JetBrains Hub

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/hub/2021/12/14/hub-update-regarding-log4j2-vulnerability/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/hub/2021/12/14/hub-update-regarding-log4j2-vulnerability/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains IntelliJ platform based IDEs (AppCode, CLion, DataGrip, DataSpell, GoLand, IntelliJ IDEA Ultimate/Community/Edu, PhpStorm, PyCharm Professional/Community/Edu, Rider, RubyMine, WebStorm)

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains Kotlin

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains Ktor

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains MPS

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains Space

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains TeamCity

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://youtrack.jetbrains.com/issue/TW-74298

Community Resources

Resource	Link
source	https://youtrack.jetbrains.com/issue/TW-74298

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains ToolBox

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains UpSource

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains YouTrack InCloud

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link JetBrains Blog Post.

Expand Details

JetBrains YouTrack Standalone

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
JetBrains Blog Post	https://blog.jetbrains.com/youtrack/2021/12/youtrack-update-regarding-log4j2-vulnerability/

Community Resources

Resource	Link
source	https://blog.jetbrains.com/youtrack/2021/12/youtrack-update-regarding-log4j2-vulnerability/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link JetBrains Blog Post.

Expand Details

JFrog (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
JFROG Statement	https://jfrog.com/knowledge-base/general-jfrog-services-are-not-affected-by-vulnerability-cve-2021-44228/

Community Resources

Resource	Link
source	https://twitter.com/jfrog/status/1469385793823199240

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link JFROG Statement.

Expand Details

JGraph DrawIO

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://github.com/jgraph/drawio/issues/2490

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Jitsi (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Jitsi Advisory	https://github.com/jitsi/security-advisories/blob/4e1ab58585a8a0593efccce77d5d0e22c5338605/advisories/JSA-2021-0004.md

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendor link Jitsi Advisory.

Expand Details

Jitsi jitsi-videobridge

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://github.com/jitsi/security-advisories/blob/4e1ab58585a8a0593efccce77d5d0e22c5338605/advisories/JSA-2021-0004.md

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.

Expand Details

Jitterbit (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Jitterbit Statement	https://success.jitterbit.com/display/DOC/Mitigating+the+Apache+Log4j2+JNDI+Vulnerability

Community Resources

Resource	Link
Jitterbit Statement	https://success.jitterbit.com/display/DOC/Mitigating+the+Apache+Log4j2+JNDI+Vulnerability

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Jitterbit Statement.
2021-12-30 21:31:50	CISAGov	Updated vendor link Jitterbit Statement.

Expand Details

Johnson Controls Athena

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls BCPro

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls CEM AC2000

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls CEM Hardware Products

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls CK721‐A (P2000)

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls CloudVue Gateway

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls CloudVue Web

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Connect24

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Connected Equipment Gateway (CEG)

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls C•CURE Client

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls C•CURE Server

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls C•CURE Web

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls C•CURE‐9000

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls DataSource

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls DLS

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Entrapass

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link Johnson Controls Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls exacqVision Client

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls exacqVision Server

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls exacqVision WebService

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Facility Explorer

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Illustra Cameras

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Illustra Insight

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls iSTAR

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Kantech Entrapass

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls Metasys Products and Tools

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls OpenBlue Active Responder

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Bridge

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Chiller Utility Plant Optimizer

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Cloud

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Connected Chiller

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Enterprise Manager

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Location Manager

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Risk Insight

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Twin

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls OpenBlue Workplace

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls P2000

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls PowerSeries NEO

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls PowerSeries Pro

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Qolsys IQ Panels

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls RFID Overhead360° Backend

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls S321‐IP (P2000)

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Johnson Controls Shoppertrak Analytics (STaN) ‐ Traffic

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Shoppertrak Market Intelligence

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Shoppertrak Perimeter Apps

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Shoppertrak Shopper Journey

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Shoppertrak Video Analytics

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Sur‐Gard Receivers

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls TrueVue Cloud

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Johnson Controls Tyco AI

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls victor

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls victor/ C•CURE‐9000 Unified

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls VideoEdge

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Johnson Controls Advisory Link	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/21/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Johnson Controls Advisory Link. Updated community note.

Expand Details

Johnson Controls Xaap

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Cloud product

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Journyx (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Journeyx Statement	https://community.journyx.com/support/solutions/articles/9000209044-apache-log4j-2-vulnerability-cve-2021-44228-

Community Resources

Resource	Link
Journeyx Statement	https://community.journyx.com/support/solutions/articles/9000209044-apache-log4j-2-vulnerability-cve-2021-44228-

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Journeyx Statement.
2021-12-30 21:31:50	CISAGov	Updated vendor link Journeyx Statement.

Expand Details

jPOS (ISO-8583) bridge

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
source	https://github.com/jpos/jPOS/commit/d615199a1bdd35c35d63c07c10fd0bdbbc96f625

Community Resources

Resource	Link
source	https://github.com/jpos/jPOS/commit/d615199a1bdd35c35d63c07c10fd0bdbbc96f625

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link source.

Expand Details

Jump Desktop (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Jump Desktop Statement	https://support.jumpdesktop.com/hc/en-us/articles/4416720395021-Log4j-CVE-2021-44228-CVE-2021-45046-Statement

Community Resources

Resource	Link
Jump Desktop Statement	https://support.jumpdesktop.com/hc/en-us/articles/4416720395021-Log4j-CVE-2021-44228-CVE-2021-45046-Statement

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Jump Desktop Statement.
2021-12-30 21:31:50	CISAGov	Updated vendor link Jump Desktop Statement.

Expand Details

Juniper Networks (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Juniper Networks Statement	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendor link Juniper Networks Statement.

Expand Details

Juniper Networks Advanced Threat Prevention (JATP)

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks AppFormix

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Apstra System

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Connectivity Services Director

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Contrail products: Contrail Analytics, Contrail Cloud, Contrail Networking or Contrail Service Orchestration

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Cross Provisioning Platform

Vendor Data

Vendor Investigating

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Investigation

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated vendorInvestigating. Updated community note. Updated community link source.

Expand Details

Juniper Networks CTPOS and CTPView

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks ICEAAA Manager

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks JATP Cloud

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks JSA Series

Vendor Data

Vendor Investigating

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Investigation

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated vendorInvestigating. Updated community note. Updated community link source.

Expand Details

Juniper Networks Juniper Identity Management Services (JIMS)

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Juniper Mist Edge

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Juniper Sky Enterprise

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Junos OS

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Junos OS Evolved

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Junos Space Network Management Platform

Vendor Data

Community Data

Vulnerable

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
NCSC-NL	Only when OpenNMS has been enabled.

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Juniper Networks Mist Access Points

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks MIST: Juniper Networks Marvis Virtual Network Assistant (VNA)

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks MIST: Juniper Networks Mist AI

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks MIST: Juniper Networks Paragon Active Assurance

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks MIST: Juniper Networks WAN Assurance

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks MIST: Juniper Networks Wi-Fi Assurance

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks MIST: Juniper Networks Wired Assurance

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Network Director

Vendor Data

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Not vuln

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated community note. Updated community link source.

Expand Details

Juniper Networks Northstar Controller

Vendor Data

Community Data

Vulnerable

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source.

Expand Details

Juniper Networks Northstar Planner

Vendor Data

Vendor Investigating

Community Data

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Investigation

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated vendorInvestigating. Updated community note. Updated community link source.

Expand Details

Juniper Networks Paragon Insights

Vendor Data

Community Data

Vulnerable

Community Resources

Resource	Link
source	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable

Sources

Date	Attribution	Description
2022-01-03 12:30:19	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source.

Expand Details