Xerox Phaser 3435

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Phaser 6000

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Phaser 6020

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Phaser 6510

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox PrimeLink Products

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Print and Scan Experience

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Team Availability Application

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox VersaLink Products

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Versant 180/280

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Versant 3100/4100

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox WorkCentre 33xx

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox WorkCentre 53xx

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox WorkCentre 58xx

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox WorkCentre 6025

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox WorkCentre 6515

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox WorkCentre 7970i

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Workflow Central Platform

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Workplace Kiosk

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Workplace Suite

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox Workspace Cloud

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox XMPie Data-Driven Print and VDP

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox XMPie Omnichannel Communications

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Xerox XMPie Web to Print

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/Xerox-Special-Bulletin-XRX21-021-Regarding-CVE-2021-44228-and-CVE-2021-45046-v1.5.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-28 14:03:39	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

XPertDoc (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Xpertdoc	https://kb.xpertdoc.com/pages/viewpage.action?pageId=87622727

Community Resources

Resource	Link
Xpertdoc	https://kb.xpertdoc.com/pages/viewpage.action?pageId=87622727

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Xpertdoc.
2021-12-30 21:31:50	CISAGov	Updated vendor link Xpertdoc.

Expand Details

XPLG (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
XPLG Secure Log4j	https://www.xplg.com/log4j-vulnerability-exploit-log4shell-xplg-secure/

Community Resources

Resource	Link
XPLG Secure Log4j	https://www.xplg.com/log4j-vulnerability-exploit-log4shell-xplg-secure/

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link XPLG Secure Log4j.
2021-12-30 21:31:50	CISAGov	Updated vendor link XPLG Secure Log4j.

Expand Details

XWIKI (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Xwiki CVE-2021-44228	https://forum.xwiki.org/t/log4j-cve-2021-44228-log4shell-zero-day-vulnerability/9557

Community Resources

Resource	Link
Xwiki CVE-2021-44228	https://forum.xwiki.org/t/log4j-cve-2021-44228-log4shell-zero-day-vulnerability/9557

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Xwiki CVE-2021-44228.
2021-12-30 21:31:50	CISAGov	Updated vendor link Xwiki CVE-2021-44228.

Expand Details

Xylem Aquatalk

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Avensor

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Cloud

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Configuration change complete

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Edge Gateway (xGW)

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus Analytics

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus Automation Control Configuration change complete

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus Cathodic Protection Mitigation in process Mitigation in process

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus FieldLogic LogServer

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus Lighting Control

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus NetMetrics Configuration change complete

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus RNI On Prem

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus RNI Saas

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Sensus SCS

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Smart Irrigation

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Xylem Water Loss Management (Visenti)

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Resources

Resource	Link
Xylem Advisory Link	https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Xylem Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link Xylem Advisory Link. Updated community note.

Expand Details

Y Soft SAFEQ 6

Vendor Data

Community Data

Vulnerable

Community Resources

Resource	Link
source	https://www.ysoft.com/getattachment/Products/Security/Standards-Compliance/text/Information-Security-Policy-Statement/YSOFT-SAFEQ-LOG4J-VULNERABILITY-PRODUCT-UPDATE-WORKAROUND-1.pdf

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround

Sources

Date	Attribution	Description
2022-01-03 13:36:11	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source.

Expand Details

Yahoo Vespa

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://blog.vespa.ai/log4j-vulnerability/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Your Vespa application may still be affected if log4j is included in your application package

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Yellowbrick (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
YellowBrick Security Advisory Yellowbrick	https://support.yellowbrick.com/hc/en-us/articles/4412586575379-Security-Advisory-Yellowbrick-is-NOT-Affected-by-the-Log4Shell-Vulnerability

Community Resources

Resource	Link
YellowBrick Security Advisory Yellowbrick	https://support.yellowbrick.com/hc/en-us/articles/4412586575379-Security-Advisory-Yellowbrick-is-NOT-Affected-by-the-Log4Shell-Vulnerability

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link YellowBrick Security Advisory Yellowbrick.
2021-12-30 21:31:50	CISAGov	Updated vendor link YellowBrick Security Advisory Yellowbrick.

Expand Details

Yellowfin (Multiple Products)

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
YellowFinbi Notice Critical Vulnerability in Log4j	https://community.yellowfinbi.com/announcement/notice-critical-vulnerability-in-log4j2

Community Resources

Resource	Link
source	https://community.yellowfinbi.com/announcement/notice-critical-vulnerability-in-log4j2

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	v7 and v6 releases are not affected unless you have manually upgraded to Log4j2

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50	CISAGov	Updated vendor link YellowFinbi Notice Critical Vulnerability in Log4j.

Expand Details

Yenlo Connext

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yenlo.com/news/vulnerability-code-log4shell-log4j2

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Connext Platform (Managed WSO2 Cloud) and all underlying middleware components are not vulnerable

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

YOKOGAWA (Multiple Products)

Vendor Data

Vendor Investigating

Community Data

Vendor Resources

Resource	Link
YOKOGAWA Advisory Link	https://www.yokogawa.com/us/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
CISAGov	Last Update: 12/22/2021

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendorInvestigating. Updated vendor link YOKOGAWA Advisory Link. Updated community note.

Expand Details

Yokogawa CENTUM VP

Vendor Data

Vendor Investigating

Community Data

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Investigation ; CVE-2021-44228: Investigation ; CVE-2021-45046: Investigation ; CVE-2021-45105: Investigation

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorInvestigating. Updated community note. Updated community link source.

Expand Details

Yokogawa CENTUM VP (other components)

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Unified Gateway Station (UGS2) Standard Function R6.06.00 or earlier is still under investigation

Sources

Date	Attribution	Description
2022-01-03 13:36:11	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Yokogawa CI Server

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa Exaopc

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa Exaplog

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa Exaquantum

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa FAST/TOOLS

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa PRM

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa ProSafe-RS

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa ProSafe-RS Lite

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2022-01-03 13:36:11	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa STARDOM

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Yokogawa VTSPortal

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.yokogawa.com/solutions/products-platforms/announcements/important-notice/log4shell/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

YSoft SAFEQ (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Ysoft Safeq	https://www.ysoft.com/getattachment/Products/Security/Standards-Compliance/text/Information-Security-Policy-Statement/YSOFT-SAFEQ-LOG4J-VULNERABILITY-PRODUCT-UPDATE-WORKAROUND-1.pdf

Community Resources

Resource	Link
Ysoft Safeq	https://www.ysoft.com/getattachment/Products/Security/Standards-Compliance/text/Information-Security-Policy-Statement/YSOFT-SAFEQ-LOG4J-VULNERABILITY-PRODUCT-UPDATE-WORKAROUND-1.pdf

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Ysoft Safeq.
2021-12-30 21:31:50	CISAGov	Updated vendor link Ysoft Safeq.

Expand Details

Zabbix (Multiple Products)

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Zabbix Log4j	https://blog.zabbix.com/zabbix-not-affected-by-the-log4j-exploit/17873/

Community Resources

Resource	Link
source	https://blog.zabbix.com/zabbix-not-affected-by-the-log4j-exploit/17873/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL	Zabbix is aware of this vulnerability, has completed verification, and can conclude that the only product where we use Java is Zabbix Java Gateway, which does not utilize the log4j library, thereby is not impacted by this vulnerability.

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50	CISAGov	Updated vendor link Zabbix Log4j.

Expand Details

Zammad (Multiple Products)

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
Zammad Elasticsearch Users	https://community.zammad.org/t/cve-2021-44228-elasticsearch-users-be-aware/8256

Community Resources

Resource	Link
source	https://community.zammad.org/t/cve-2021-44228-elasticsearch-users-be-aware/8256

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround
NCSC-NL	Most of Zammad instances make use of Elasticsearch which might be vulnerable.

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50	CISAGov	Updated vendor link Zammad Elasticsearch Users.

Expand Details

Zaproxy (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Zaproxy	https://www.zaproxy.org/blog/2021-12-10-zap-and-log4shell/

Community Resources

Resource	Link
Zaproxy	https://www.zaproxy.org/blog/2021-12-10-zap-and-log4shell/

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Zaproxy.
2021-12-30 21:31:50	CISAGov	Updated vendor link Zaproxy.

Expand Details

Zebra (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Zebra lifeguard Security	https://www.zebra.com/us/en/support-downloads/lifeguard-security/cve-2021-442280-dubbed-log4shell-or-logjam-vulnerability.html

Community Resources

Resource	Link
Zebra lifeguard Security	https://www.zebra.com/us/en/support-downloads/lifeguard-security/cve-2021-442280-dubbed-log4shell-or-logjam-vulnerability.html

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Zebra lifeguard Security.
2021-12-30 21:31:50	CISAGov	Updated vendor link Zebra lifeguard Security.

Expand Details

Zeiss Cataract Suite

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Patch is available

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Zeiss EQ Workplace

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Patch is available

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Zeiss FORUM

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Patch is available

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Zeiss Glaucoma Workplace

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Patch is available

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Zeiss Laser Treatment Workplace

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Patch is available

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Zeiss Retina Workplace

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Patch is available

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.

Expand Details

Zendesk (Multiple Products)

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
2021-12-13 Security Advisory - Apache Log4j (CVE-2021-44228)	https://support.zendesk.com/hc/en-us/articles/4413583476122

Community Resources

Resource	Link
source	https://support.zendesk.com/hc/en-us/articles/4413583476122-2021-12-13-Security-Advisory-Apache-Log4j-CVE-2021-44228-

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround
NCSC-NL	SaaS - No user action
CISAGov	Zendesk products are all cloud-based; thus there are no updates for the customers to install as the company is working on patching their infrastructure and systems.
CISAGov	Last Update: 12/13/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link 2021-12-13 Security Advisory - Apache Log4j (CVE-2021-44228). Updated community note. Updated community note.

Expand Details

Zenoss (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Zenoss	https://support.zenoss.com/hc/en-us

Community Resources

Resource	Link
Zenoss	https://support.zenoss.com/hc/en-us

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link Zenoss.
2021-12-30 21:31:50	CISAGov	Updated vendor link Zenoss.

Expand Details

Zentera Systems, Inc. CoIP Access Platform

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
[CVE-2021-44228] Log4Shell Vulnerability in Apache Log4j	https://support.zentera.net/hc/en-us/articles/4416227743511–CVE-2021-44228-Log4Shell-Vulnerability-in-Apache-Log4j

Community Resources

Resource	Link
[CVE-2021-44228] Log4Shell Vulnerability in Apache Log4j	https://support.zentera.net/hc/en-us/articles/4416227743511–CVE-2021-44228-Log4Shell-Vulnerability-in-Apache-Log4j

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/17/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link [CVE-2021-44228] Log4Shell Vulnerability in Apache Log4j.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link [CVE-2021-44228] Log4Shell Vulnerability in Apache Log4j. Updated community note.

Expand Details

Zerto (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Zerto KB	https://help.zerto.com/kb/000004822

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendor link Zerto KB.

Expand Details

Zerto Cloud Appliance

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://help.zerto.com/kb/000004822

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Zerto Cloud Manager

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://help.zerto.com/kb/000004822

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Zerto Virtual Manager

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://help.zerto.com/kb/000004822

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Zerto Virtual Replication Appliance

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://help.zerto.com/kb/000004822

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Zesty (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Zesty Log4j Exploit	https://www.zesty.io/mindshare/company-announcements/log4j-exploit/

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendor link Zesty Log4j Exploit.

Expand Details

Zesty .io

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://www.zesty.io/mindshare/company-announcements/log4j-exploit/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Zimbra (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
BugZilla Zimbra	https://bugzilla.zimbra.com/show_bug.cgi?id=109428

Community Resources

Resource	Link
BugZilla Zimbra	https://bugzilla.zimbra.com/show_bug.cgi?id=109428

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link BugZilla Zimbra.
2021-12-30 21:31:50	CISAGov	Updated vendor link BugZilla Zimbra.

Expand Details

Zoho Online

Vendor Data

Vendor Investigating

Community Data

Community Resources

Resource	Link
source	https://help.zoho.com/portal/en/community/topic/update-on-the-recent-apache-log4j-vulnerability

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Investigation

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorInvestigating. Updated community note. Updated community link source.

Expand Details

Zoom (Multiple Products)

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Zoom Security Exposure	https://explore.zoom.us/en/trust/security/security-bulletin/security-bulletin-log4j/?=nocache

Community Resources

Resource	Link
source	https://explore.zoom.us/en/trust/security/security-bulletin/security-bulletin-log4j

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link Zoom Security Exposure.

Expand Details

ZPE systems Inc (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
ZpeSystems CVE-2021-44228	https://support.zpesystems.com/portal/en/kb/articles/is-nodegrid-os-and-zpe-cloud-affected-by-cve-2021-44228-apache-log4j

Community Resources

Resource	Link
ZpeSystems CVE-2021-44228	https://support.zpesystems.com/portal/en/kb/articles/is-nodegrid-os-and-zpe-cloud-affected-by-cve-2021-44228-apache-log4j

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link ZpeSystems CVE-2021-44228.
2021-12-30 21:31:50	CISAGov	Updated vendor link ZpeSystems CVE-2021-44228.

Expand Details

Zscaler (Multiple Products)

Vendor Data

Vendor Patch Exists

Community Data

Community Resources

Resource	Link
source	https://trust.zscaler.com/posts/9581

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source.

Expand Details

Zscaler See Link (Multiple Products)

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
CVE-2021-44228 log4j Vulnerability	https://trust.zscaler.com/posts/9581

Community Notes

Source	Note
CISAGov	Last Update: 12/15/2021

Sources

Date	Attribution	Description
2022-01-05 16:33:50	CISAGov	Updated vendorPatchExists. Updated vendor link CVE-2021-44228 log4j Vulnerability. Updated community note.

Expand Details

Zyxel (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
Zyxel Security Advisory for Apache Log4j	https://www.zyxel.com/support/Zyxel_security_advisory_for_Apache_Log4j_RCE_vulnerability.shtml

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendor link Zyxel Security Advisory for Apache Log4j.

Expand Details

Zyxel All other products

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

Zyxel NetAtlas Element Management System (EMS)

Vendor Data

Community Data

Vulnerable

Community Resources

Resource	Link
source	https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
NCSC-NL	Hotfix availability Dec. 20, 2021, Patch availability in end of Feb. 2022

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.

Expand Details

Zyxel Security Firewall/Gateways

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
Zyxel Security Advisory	https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability

Community Resources

Resource	Link
Zyxel Security Advisory	https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/14/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link Zyxel Security Advisory.
2021-12-30 21:31:50	CISAGov	Updated communityNotVulnerable. Updated vendor link Zyxel Security Advisory. Updated community note.

Expand Details

1Password (Multiple Products)

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
1Password statement	https://support.1password.com/kb/202112/

Community Resources

Resource	Link
source	https://1password.community/discussion/comment/622612/#Comment_622612

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov	Last Update: 12/23/2021

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link 1Password statement. Updated community note.

Expand Details

2Bleftsparks (Multiple Products)

Vendor Data

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	/NCSC-NL/log4shell/blob/main/software/vendor-statements/2Bleftsparks.png

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.

Expand Details

2n (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
2n Advisory Link	https://www.2n.com/cs_CZ/novinky/produkty-2n-neohrozuje-zranitelnost-cve-2021-44228-komponenty-log4j-2

Community Resources

Resource	Link
2n Advisory Link	https://www.2n.com/cs_CZ/novinky/produkty-2n-neohrozuje-zranitelnost-cve-2021-44228-komponenty-log4j-2

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated community link 2n Advisory Link.
2021-12-30 21:31:50	CISAGov	Updated vendor link 2n Advisory Link.

Expand Details

3CX (Multiple Products)

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
3CX Community Thread Link	https://www.3cx.com/community/threads/log4j-vulnerability-cve-2021-44228.86436/#post-407911

Community Resources

Resource	Link
source	https://www.3cx.com/community/threads/log4j-vulnerability-cve-2021-44228.86436/post-407835

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link 3CX Community Thread Link.

Expand Details

3M Health Information Systems CGS

Vendor Data

Community Data

Vulnerable

Vendor Resources

Resource	Link
CGS: Log4j Software Update(login required)	https://support.3mhis.com/app/account/updates/ri/5210

Community Resources

Resource	Link
CGS: Log4j Software Update(login required)	https://support.3mhis.com/app/account/updates/ri/5210

Community Notes

Source	Note
NCSC-NL	CVE-2021-44228: Vulnerable
NCSC-NL	This advisory is available to customer only and has not been reviewed by CISA.
CISAGov	This advisory is available to customer only and has not been reviewed by CISA.
CISAGov	Last Update: 12/15/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated communityVulnerable. Updated community note. Updated community link CGS: Log4j Software Update(login required). Updated community note.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendor link CGS: Log4j Software Update(login required). Updated community note. Updated community note.

Expand Details

7-Zip (Multiple Products)

Vendor Data

Community Data

Not Vulnerable

Vendor Resources

Resource	Link
7Zip Discussion Link	https://sourceforge.net/p/sevenzip/discussion/45797/thread/b977bbd4d1

Community Resources

Resource	Link
source	https://sourceforge.net/p/sevenzip/discussion/45797/thread/b977bbd4d1/

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendor link 7Zip Discussion Link.

Expand Details

7Signal Sapphire

Vendor Data

Vendor Patch Exists

Community Data

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Fix released 2021-12-14

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community note.

Expand Details

ABB (Multiple Products)

Vendor Data

Community Data

Vendor Resources

Resource	Link
ABB Link	https://search.abb.com/library/Download.aspx?DocumentID=9ADB012621&LanguageCode=en&DocumentPartId=&Action=Launch

Sources

Date	Attribution	Description
2021-12-30 21:31:50	CISAGov	Updated vendor link ABB Link.

Expand Details

ABB Alarminsight Cloud

Vendor Data

Vendor Investigating

Community Data

Not Vulnerable

Community Resources

Resource	Link
source	https://search.abb.com/library/Download.aspx?DocumentID=9ADB012621&LanguageCode=en&DocumentPartId=&Action=Launch

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date	Attribution	Description
2021-12-27 15:29:04	NCSC-NL	Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50	CISAGov	Updated vendorInvestigating.

Expand Details