Google Cloud Container Registry


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Data Catalog


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Data Catalog has been updated to mitigate the issues identified in CVE-2021-44228 and CVE-2021-45046. We strongly encourage customers who introduced their own connectors to identify dependencies on Log4j 2 and update them to the latest version.
CISAGov Data Catalog has been updated to mitigate the issues identified in CVE-2021-44228 and CVE-2021-45046. We strongly encourage customers who introduced their own connectors to identify dependencies on Log4j 2 and update them to the latest version.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Data Fusion


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Data Fusion does not use Log4j 2, but uses Dataproc as one of the options to execute pipelines. Dataproc released new images on December 18, 2021 to address the vulnerability in CVE-2021-44228 and CVE-2021-45046. Customers must follow instructions in a notification sent on December 18, 2021 with the subject line “Important information about Data Fusion.”
CISAGov Data Fusion does not use Log4j 2, but uses Dataproc as one of the options to execute pipelines. Dataproc released new images on December 18, 2021 to address the vulnerability in CVE-2021-44228 and CVE-2021-45046. Customers must follow instructions in a notification sent on December 18, 2021 with the subject line “Important information about Data Fusion.”
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Database Migration Service (DMS)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/19/2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Dataflow


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Dataflow does not use Log4j 2 and is not impacted by the issues in CVE-2021-44228 and CVE-2021-45046. If you have changed dependencies or default behavior, it is strongly recommended you verify there is no dependency on vulnerable versions Log4j 2. Customers have been provided details and instructions in a notification sent on December 17, 2021 with the subject line “Update #1 to Important information about Dataflow.”
CISAGov Dataflow does not use Log4j 2 and is not impacted by the issues in CVE-2021-44228 and CVE-2021-45046. If you have changed dependencies or default behavior, it is strongly recommended you verify there is no dependency on vulnerable versions Log4j 2. Customers have been provided details and instructions in a notification sent on December 17, 2021 with the subject line “Update #1 to Important information about Dataflow.”
CISAGov Last Update: 12/17/2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Dataproc


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Dataproc released new images on December 18, 2021 to address the vulnerabilities in CVE-2021-44228 and CVE-2021-45046. Customers must follow the instructions in notifications sent on December 18, 2021 with the subject line “Important information about Dataproc” with Dataproc documentation.
CISAGov Dataproc released new images on December 18, 2021 to address the vulnerabilities in CVE-2021-44228 and CVE-2021-45046. Customers must follow the instructions in notifications sent on December 18, 2021 with the subject line “Important information about Dataproc” with Dataproc documentation.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Dataproc Metastore


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Dataproc Metastore has been updated to mitigate the issues identified in CVE-2021-44228 and CVE-2021-45046. Customers who need to take actions were sent two notifications with instructions on December 17, 2021 with the subject line “Important information regarding Log4j 2 vulnerability in your gRPC-enabled Dataproc Metastore.”
CISAGov Dataproc Metastore has been updated to mitigate the issues identified in CVE-2021-44228 and CVE-2021-45046. Customers who need to take actions were sent two notifications with instructions on December 17, 2021 with the subject line “Important information regarding Log4j 2 vulnerability in your gRPC-enabled Dataproc Metastore.”
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Datastore


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/19/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Datastream


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/19/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Dialogflow Essentials (ES)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Document AI


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Event Threat Detection


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Eventarc


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Filestore


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL “Log4j 2 is contained within the Filestore service; there is a technical control in place that mitigates the vulnerabilities in CVE-2021-44228 and CVE-2021-45046. Log4j 2 will be updated to the latest version as part of the scheduled rollout in January 2022.”
CISAGov Log4j 2 is contained within the Filestore service; there is a technical control in place that mitigates the vulnerabilities in CVE-2021-44228 and CVE-2021-45046. Log4j 2 will be updated to the latest version as part of the scheduled rollout in January 2022.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Firebase


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Firestore


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/19/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Game Servers


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Google Kubernetes Engine


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Google Kubernetes Engine does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046. Customers may have introduced a separate logging solution that uses Log4j 2. We strongly encourage customers who manage Google Kubernetes Engine environments to identify components dependent on Log4j 2 and update them to the latest version.
CISAGov Google Kubernetes Engine does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046. Customers may have introduced a separate logging solution that uses Log4j 2. We strongly encourage customers who manage Google Kubernetes Engine environments to identify components dependent on Log4j 2 and update them to the latest version.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Healthcare Data Engine (HDE)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Human-in-the-Loop AI


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud IoT Core


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Key Access Justifications (KAJ)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Looker


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL \Looker-hosted instances have been updated to a Looker version with Log4j v2.16. Looker is currently working with third-party driver vendors to evaluate the impact of the Log4j vulnerability. As Looker does not enable logging for these drivers in Looker-hosted instances, no messages are logged. We conclude that the vulnerability is mitigated. We continue to actively work with the vendors to deploy a fix for these drivers. Looker customers who self-manage their Looker instances have received instructions through their technical contacts on how to take the necessary steps to address the vulnerability. Looker customers who have questions or require assistance, please visit Looker Support.
CISAGov \Looker-hosted instances have been updated to a Looker version with Log4j v2.16. Looker is currently working with third-party driver vendors to evaluate the impact of the Log4j vulnerability. As Looker does not enable logging for these drivers in Looker-hosted instances, no messages are logged. We conclude that the vulnerability is mitigated. We continue to actively work with the vendors to deploy a fix for these drivers. Looker customers who self-manage their Looker instances have received instructions through their technical contacts on how to take the necessary steps to address the vulnerability. Looker customers who have questions or require assistance, please visit Looker Support.
CISAGov Last Update: 12/18/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Media Translation API


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Memorystore


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/19/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Migrate for Anthos


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Migrate for Compute Engine (M4CE)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL M4CE has been updated to mitigate the issues identified in CVE-2021-44228 and CVE-2021-45046. M4CE has been updated to version 4.11.9 to address the vulnerabilities. A notification was sent to customers on December 17, 2021 with subject line “Important information about CVE-2021-44228 and CVE-2021-45046” for M4CE V4.11 or below. If you are on M4CE v5.0 or above, no action is needed.
CISAGov M4CE has been updated to mitigate the issues identified in CVE-2021-44228 and CVE-2021-45046. M4CE has been updated to version 4.11.9 to address the vulnerabilities. A notification was sent to customers on December 17, 2021 with subject line “Important information about CVE-2021-44228 and CVE-2021-45046” for M4CE V4.11 or below. If you are on M4CE v5.0 or above, no action is needed.
CISAGov Last Update: 12/19/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Network Connectivity Center


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Network Intelligence Center


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Network Service Tiers


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Persistent Disk


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Pub/Sub


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/16/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Pub/Sub Lite


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046. Customers may have introduced a separate logging solution that uses Log4j 2. We strongly encourage customers who manage Pub/Sub Lite environments to identify components dependent on Log4j 2 and update them to the latest version.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046. Customers may have introduced a separate logging solution that uses Log4j 2. We strongly encourage customers who manage Pub/Sub Lite environments to identify components dependent on Log4j 2 and update them to the latest version.
CISAGov Last Update: 12/16/2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud reCAPTCHA Enterprise


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Recommendations AI


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Retail Search


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Risk Manager


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Secret Manager


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Security Command Center


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Service Directory


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Service Infrastructure


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Speaker ID


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Speech-to-Text


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Speech-to-Text On-Prem


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Storage Transfer Service


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Talent Solution


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 2021-12-21

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Text-to-Speech


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 2021-12-21

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Transcoder API


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Transfer Appliance


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Video Intelligence API


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Virtual Private Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud VMware Engine


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL We are working with VMware and tracking VMSA-2021-0028.1. We will deploy fixes as they become available.
CISAGov We are working with VMware and tracking VMSA-2021-0028.1. We will deploy fixes as they become available.
CISAGov Last Update: 12/11/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Web Security Scanner


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Google Cloud Workflows


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
https://cloud.google.com/log4j2-security-advisory https://cloud.google.com/log4j2-security-advisory

Community Resources

Resource Link
source https://cloud.google.com/log4j2-security-advisory

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Product does not use Log4j 2 and is not impacted by the issues identified in CVE-2021-44228 and CVE-2021-45046.
CISAGov Last Update: 12/21/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link https://cloud.google.com/log4j2-security-advisory. Updated community note. Updated community note.
Expand Details

Gradle (Multiple Products)


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://blog.gradle.org/log4j-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Gradle Scala Compiler Plugin depends upon log4j-core but it is not used.

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Gradle Enterprise


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Gradle Enterprise Security Advisories - Remote code execution vulnerability due to use of Log4j2 https://security.gradle.com/advisory/2021-11

Community Resources

Resource Link
source https://security.gradle.com/advisory/2021-11

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Gradle Enterprise Security Advisories - Remote code execution vulnerability due to use of Log4j2.
Expand Details

Gradle Enterprise Build Cache Node


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Gradle Enterprise Security Advisories - Remote code execution vulnerability due to use of Log4j2 https://security.gradle.com/advisory/2021-11

Community Resources

Resource Link
source https://security.gradle.com/advisory/2021-11

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Gradle Enterprise Security Advisories - Remote code execution vulnerability due to use of Log4j2.
Expand Details

Gradle Enterprise Test Distribution Agent


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Gradle Enterprise Security Advisories - Remote code execution vulnerability due to use of Log4j2 https://security.gradle.com/advisory/2021-11

Community Resources

Resource Link
source https://security.gradle.com/advisory/2021-11

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Gradle Enterprise Security Advisories - Remote code execution vulnerability due to use of Log4j2.
Expand Details

Gradle Gradle


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Gradle Blog - Dealing with the critical Log4j vulnerability https://blog.gradle.org/log4j-vulnerability

Community Notes

Source Note
CISAGov Gradle Scala Compiler Plugin depends upon log4j-core but it is not used.

Sources

Date Attribution Description
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Gradle Blog - Dealing with the critical Log4j vulnerability. Updated community note.
Expand Details

Grafana (Multiple Products)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Grafana Statement https://grafana.com/blog/2021/12/14/grafana-labs-core-products-not-impacted-by-log4j-cve-2021-44228-and-related-vulnerabilities/

Community Resources

Resource Link
source https://grafana.com/blog/2021/12/14/grafana-labs-core-products-not-impacted-by-log4j-cve-2021-44228-and-related-vulnerabilities/

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendor link Grafana Statement.
Expand Details

Grandstream (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Grandstream Statement https://blog.grandstream.com/press-releases/grandstream-products-unaffected-by-log4j-vulnerability?hsLang=en

Community Resources

Resource Link
Grandstream Statement https://blog.grandstream.com/press-releases/grandstream-products-unaffected-by-log4j-vulnerability?hsLang=en

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community link Grandstream Statement.
2021-12-30 21:31:50 CISAGov Updated vendor link Grandstream Statement.
Expand Details

Gravitee Access Management


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link About the Log4J CVSS 10 Critical Vulnerability.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link About the Log4J CVSS 10 Critical Vulnerability.
Expand Details

Gravitee Alert Engine


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link About the Log4J CVSS 10 Critical Vulnerability.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link About the Log4J CVSS 10 Critical Vulnerability.
Expand Details

Gravitee API Management


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link About the Log4J CVSS 10 Critical Vulnerability.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link About the Log4J CVSS 10 Critical Vulnerability.
Expand Details

Gravitee Cockpit


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Resources

Resource Link
About the Log4J CVSS 10 Critical Vulnerability https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link About the Log4J CVSS 10 Critical Vulnerability.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link About the Log4J CVSS 10 Critical Vulnerability.
Expand Details

Gravitee.io (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Gravitee.io Statement https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Community Resources

Resource Link
Gravitee.io Statement https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community link Gravitee.io Statement.
2021-12-30 21:31:50 CISAGov Updated vendor link Gravitee.io Statement.
Expand Details

Gravwell (Multiple Products)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Gravwell Statement https://www.gravwell.io/blog/cve-2021-44228-log4j-does-not-impact-gravwell-products

Community Resources

Resource Link
source https://www.gravwell.io/blog/cve-2021-44228-log4j-does-not-impact-gravwell-products

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Gravwell products do not use Java

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated vendor link Gravwell Statement.
Expand Details

Graylog (Multiple Products)


Vendor Data Vendor Patch Exists
Community Data

Community Resources

Resource Link
source https://www.graylog.org/post/graylog-update-for-log4j

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL “The vulnerable Log4j library is used to record GrayLog’s own log information. Vulnerability is not triggered when GrayLog stores exploitation vector from an outer system. Graylog <a href=““https://github.com/Graylog2/graylog2-server/compare/4.2.3...4.2.4"">version 4.2.4 fixes <a href=““https://www.lunasec.io/docs/blog/log4j-zero-day-update-on-cve-2021-45046/"" rel=““nofollow”">another vulnerability”

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.
Expand Details

Graylog Server


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Graylog Update for Log4j https://www.graylog.org/post/graylog-update-for-log4j

Community Resources

Resource Link
Graylog Update for Log4j https://www.graylog.org/post/graylog-update-for-log4j

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link Graylog Update for Log4j.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Graylog Update for Log4j.
Expand Details

Greenshot (Multiple Products)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
GreenShot Statement https://greenshot.atlassian.net/browse/BUG-2871

Community Resources

Resource Link
source https://greenshot.atlassian.net/browse/BUG-2871

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendor link GreenShot Statement.
Expand Details

Guidewire (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Guidewire Statement https://community.guidewire.com/s/article/Update-to-customers-who-have-questions-about-the-use-of-log4j-in-Guidewire-products

Community Resources

Resource Link
Guidewire Statement https://community.guidewire.com/s/article/Update-to-customers-who-have-questions-about-the-use-of-log4j-in-Guidewire-products

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community link Guidewire Statement.
2021-12-30 21:31:50 CISAGov Updated vendor link Guidewire Statement.
Expand Details

HCL Software BigFix Compliance


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
KB https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:52:06 NCSC-NL Updated community note. Updated community link source.
2022-01-03 14:15:15 CISAGov Updated communityNotVulnerable. Updated vendor link KB. Updated community note. Updated community note.
Expand Details

HCL Software BigFix Insights


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
KB https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:48:21 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link KB. Updated community note. Updated community note.
Expand Details

HCL Software BigFix Insights for Vulnerability Remediation


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
KB https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:48:21 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link KB. Updated community note. Updated community note.
Expand Details

HCL Software BigFix Inventory


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
KB with fix https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround ; CVE-2021-45046: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:52:06 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendor link KB with fix. Updated community note. Updated community note.
Expand Details

HCL Software BigFix Lifecycle


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
KB https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:49:35 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link KB. Updated community note. Updated community note.
Expand Details

HCL Software BigFix Mobile


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
KB https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:49:35 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link KB. Updated community note. Updated community note.
Expand Details

HCL Software BigFix Patch


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
KB https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Resources

Resource Link
source https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095486

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Not Affected for related CVE-2021-45046
CISAGov Last Update: 12/15/2021

Sources

Date Attribution Description
2022-01-04 11:49:35 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link KB. Updated community note. Updated community note.
Expand Details

HelpSystems Clearswift (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
HelpSystems Clearswift https://community.helpsystems.com/kb-nav/kb-article/?id=37becc1c-255c-ec11-8f8f-6045bd006687

Community Resources

Resource Link
HelpSystems Clearswift https://community.helpsystems.com/kb-nav/kb-article/?id=37becc1c-255c-ec11-8f8f-6045bd006687

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community link HelpSystems Clearswift.
2021-12-30 21:31:50 CISAGov Updated vendor link HelpSystems Clearswift.
Expand Details

Helpsystems Clearswift Secure Email Gateway


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://community.helpsystems.com/kb-nav/kb-article/?id=37becc1c-255c-ec11-8f8f-6045bd006687&redirect=false

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Investigation

Sources

Date Attribution Description
2022-01-04 11:49:35 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Helpsystems Clearswift Secure Exchange Gateway


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://community.helpsystems.com/kb-nav/kb-article/?id=37becc1c-255c-ec11-8f8f-6045bd006687&redirect=false

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Investigation

Sources

Date Attribution Description
2022-01-04 11:49:35 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Helpsystems Clearswift Secure ICAP Gateway


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://community.helpsystems.com/kb-nav/kb-article/?id=37becc1c-255c-ec11-8f8f-6045bd006687&redirect=false

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Investigation

Sources

Date Attribution Description
2022-01-04 11:49:35 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details