Broadcom Symantec Endpoint Protection (SEP) for Mobile


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec Endpoint Protection Manager (SEPM)


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://knowledge.broadcom.com/external/article/230359

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Fix ; CVE-2021-45046: Fix ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 11:16:10 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec Identity Governance and Administration (IGA)


Vendor Data
Community Data Vulnerability Disputed

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://knowledge.broadcom.com/external/article?articleId=230278

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec Mail Security for Microsoft Exchange (SMSMSE)


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec Messaging Gateway (SMG)


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec PGP Solutions


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec Protection Engine (SPE)


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec Protection for SharePoint Servers (SPSS)


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Symantec VIP


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Broadcom VIP


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link Broadcom Support Portal.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom VIP Authentication Hub


Vendor Data Vendor Patch Exists Vendor Investigating
Community Data

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
source https://knowledge.broadcom.com/external/article?articleId=230768

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Fix ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 11:16:10 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Web Isolation (WI)


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link Broadcom Support Portal.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Web Isolation (WI) Cloud


Vendor Data Vendor Patch Exists
Community Data

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date Attribution Description
2022-01-03 11:16:10 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
Expand Details

Broadcom Web Isolation (WI) On-premises


Vendor Data Vendor Investigating
Community Data

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
Expand Details

Broadcom Web Security Service (WSS)


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link Broadcom Support Portal.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Broadcom Web Security Service (WSS) Reporting


Vendor Data Vendor Patch Exists
Community Data

Community Resources

Resource Link
source https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793#:~:text=%C2%A0-,Web%20Security%20Service%20(WSS)%20Reporting,-CVE

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
Expand Details

Broadcom WebPulse


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Resources

Resource Link
Broadcom Support Portal https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation

Sources

Date Attribution Description
2022-01-03 11:16:10 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link Broadcom Support Portal.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Broadcom Support Portal.
Expand Details

Camunda (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Camunda Forum Link https://forum.camunda.org/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228/31910

Community Resources

Resource Link
Camunda Forum Link https://forum.camunda.org/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228/31910

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community link Camunda Forum Link.
2021-12-30 21:31:50 CISAGov Updated vendor link Camunda Forum Link.
Expand Details

Canary Labs (Multiple Products)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Canary Labs Advisory Link https://helpcenter.canarylabs.com/t/83hjjk0/log4j-vulnerability

Community Resources

Resource Link
Canary Labs Advisory Link https://helpleft.canarylabs.com/t/83hjjk0/log4j-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link Canary Labs Advisory Link.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Canary Labs Advisory Link. Updated community note.
Expand Details

Canon CT Medical Imaging Products


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Canon Advisory Link https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Resources

Resource Link
source https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Canon Advisory Link. Updated community note.
Expand Details

Canon MR Medical Imaging Products


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Canon Advisory Link https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Resources

Resource Link
source https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Canon Advisory Link. Updated community note.
Expand Details

Canon NM Medical Imaging Products


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Canon Advisory Link https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Resources

Resource Link
source https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Canon Advisory Link. Updated community note.
Expand Details

Canon UL Medical Imaging Products


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Canon Advisory Link https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Resources

Resource Link
source https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Canon Advisory Link. Updated community note.
Expand Details

Canon XR Medical Imaging Products


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Canon Advisory Link https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Resources

Resource Link
source https://global.medical.canon/service-support/securityinformation/apache_log4j_vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Canon Advisory Link. Updated community note.
Expand Details

CapStorm Copystorm


Vendor Data Vendor Investigating
Community Data

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated community note.
Expand Details

Carbon Black Cloud Workload Appliance


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://community.carbonblack.com/t5/Documentation-Downloads/Log4Shell-Log4j-Remote-Code-Execution-CVE-2021-44228/ta-p/109134

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Workaround
NCSC-NL More information on pages linked bottom of blogpost (behind login)

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Carbon Black EDR Servers


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://community.carbonblack.com/t5/Documentation-Downloads/Log4Shell-Log4j-Remote-Code-Execution-CVE-2021-44228/ta-p/109134

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Workaround
NCSC-NL More information on pages linked bottom of blogpost (behind login)

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

CareStream (Multiple Products)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Carestream Advisory Link https://www.carestream.com/en/us/services-and-support/cybersecurity-and-privacy

Community Resources

Resource Link
source https://www.carestream.com/en/us/services-and-support/cybersecurity-and-privacy

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Carestream Advisory Link. Updated community note.
Expand Details

CAS genesisWorld (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
CAS genesisWorld Link https://helpdesk.cas.de/CASHelpdesk/FAQDetails.aspx?gguid=0x79F9E881EE3C46C1A71BE9EB3E480446

Community Resources

Resource Link
CAS genesisWorld Link https://helpdesk.cas.de/CASHelpdesk/FAQDetails.aspx?gguid=0x79F9E881EE3C46C1A71BE9EB3E480446

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated community link CAS genesisWorld Link.
2021-12-30 21:31:50 CISAGov Updated vendor link CAS genesisWorld Link.
Expand Details

CaseWare IDEA


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://www.caseware.com/case-knowledge/caseware-ensuring-customers-protected-log4j-vulnerabilities

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

CaseWare WorkingPapers


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://www.caseware.com/case-knowledge/caseware-ensuring-customers-protected-log4j-vulnerabilities

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cato Networks (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Cato Networks Blog Post https://www.catonetworks.com/blog/cato-networks-rapid-response-to-the-apache-log4j-remote-code-execution-vulnerability/

Community Resources

Resource Link
Cato Networks Blog Post https://www.catonetworks.com/blog/cato-networks-rapid-response-to-the-apache-log4j-remote-code-execution-vulnerability/

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community link Cato Networks Blog Post.
2021-12-30 21:31:50 CISAGov Updated vendor link Cato Networks Blog Post.
Expand Details

Cendio ThinLinc


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://community.thinlinc.com/t/log4shell-vulnerability/286

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cepheid C360


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Cepheid Advisory Link https://www.cepheid.com/en_US/legal/product-security-updates

Community Resources

Resource Link
source https://www.cepheid.com/en_US/legal/product-security-updates

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Cepheid Advisory Link. Updated community note.
Expand Details

Cepheid GeneXpert


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Cepheid Advisory Link https://www.cepheid.com/en_US/legal/product-security-updates

Community Resources

Resource Link
source https://www.cepheid.com/en_US/legal/product-security-updates

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation
CISAGov Last Update: 12/20/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Cepheid Advisory Link. Updated community note.
Expand Details

Cerberus FTP


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.cerberusftp.com/hc/en-us/articles/4412448183571-Cerberus-is-not-affected-by-CVE-2021-44228-log4j-0-day-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cerberus FTP (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Cerberus Article https://support.cerberusftp.com/hc/en-us/articles/4412448183571-Cerberus-is-not-affected-by-CVE-2021-44228-log4j-0-day-vulnerability

Community Resources

Resource Link
Cerberus Article https://support.cerberusftp.com/hc/en-us/articles/4412448183571-Cerberus-is-not-affected-by-CVE-2021-44228-log4j-0-day-vulnerability

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated community link Cerberus Article.
2021-12-30 21:31:50 CISAGov Updated vendor link Cerberus Article.
Expand Details

Cerebro Elasticsearch Web Admin


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://github.com/lmenezes/cerebro/blob/main/conf/logback.xml#L5

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
NCSC-NL Uses logback for logging

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Chaser Systems discrimiNAT Firewall


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
Are Chaser’s products affected https://chasersystems.com/discrimiNAT/blog/log4shell-and-its-traces-in-a-network-egress-filter/#are-chasers-products-affected

Community Resources

Resource Link
source https://chasersystems.com/discrimiNAT/blog/log4shell-and-its-traces-in-a-network-egress-filter/#are-chasers-products-affected

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link Are Chaser’s products affected.
Expand Details

Check Point CloudGuard


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865.
Expand Details

Check Point Harmony Endpoint & Harmony Mobile


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865.
Expand Details

Check Point Infinity Portal


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865.
Expand Details

Check Point Quantum Security Gateway


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865.
Expand Details

Check Point Quantum Security Management


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln
CISAGov Where used, uses the 1.8.0_u241 version of the JRE that protects against this attack by default.

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865. Updated community note.
Expand Details

Check Point SMB


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865.
Expand Details

Check Point ThreatCloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
sk176865 https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Resources

Resource Link
source https://supportcontent.checkpoint.com/solutions?id=sk176865

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link sk176865.
Expand Details

Chef Backend


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://www.chef.io/blog/is-chef-vulnerable-to-cve-2021-44228-(log4j)

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Ciphermail (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Ciphermail Blog Post https://www.ciphermail.com/blog/ciphermail-gateway-and-webmail-messenger-are-not-vulnerable-to-cve-2021-44228.html

Community Resources

Resource Link
Ciphermail Blog Post https://www.ciphermail.com/blog/ciphermail-gateway-and-webmail-messenger-are-not-vulnerable-to-cve-2021-44228.html

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated community link Ciphermail Blog Post.
2021-12-30 21:31:50 CISAGov Updated vendor link Ciphermail Blog Post.
Expand Details

CIS CSAT Pro


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://cisecurity.atlassian.net/servicedesk/customer/portal/15/article/2434301961

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Upgrade to v1.7.1. The next release for CIS products listed in the table below is currently targeted for January 25, 2022. That release will include an update from Log4j 2.15.0 to Log4j 2.16.0

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Cisco ACI Multi-Site Orchestrator


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco ACI Virtual Edge


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Adaptive Security Appliance (ASA) Software


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Adaptive Security Device Manager


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Advanced Web Security Reporting Application


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Aironet 1560 Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 1810 Series OfficeExtend Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 1810w Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 1815 Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 1830 Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 1850 Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 2800 Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Aironet 3800 Series Access Points


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco AMP Virtual Private Cloud Appliance


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco AnyConnect Secure Mobility Client


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco AppDynamics


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://docs.appdynamics.com/display/PAA/Security+Advisory%3A+Apache+Log4j+Vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix ; CVE-2021-45046: Fix ; CVE-2021-45105: Not vuln
NCSC-NL See advisory for complete list of fixed versions per component

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Application Policy Infrastructure Controller (APIC)


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco ASR 5000 Series Routers


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Broadcloud Calling


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco BroadWorks


Vendor Data Vendor Patch Exists Vendor Investigating
Community Data

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Fix ; CVE-2021-45046: Fix ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Catalyst 9800 Series Wireless Controllers


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Cloud Email Security


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Cloud Services Platform 2100


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco Cloud Services Platform 5000 Series


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco CloudCenter Action Orchestrator


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Cisco CloudCenter Suite Admin


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Fix ; CVE-2021-45046: Fix

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco CloudCenter Workload Manager


Vendor Data Vendor Patch Exists Vendor Investigating
Community Data

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Fix

Sources

Date Attribution Description
2022-01-03 11:26:17 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Cognitive Intelligence


Vendor Data Vendor Investigating
Community Data Not Vulnerable

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Resources

Resource Link
source https://tools.cisco.com/security/left/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details

Cisco Common Services Platform Collector


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Sources

Date Attribution Description
2021-12-30 21:31:50 CISAGov Updated vendorInvestigating. Updated vendor link Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021.
Expand Details