Amazon AWS CloudHSM


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
Apache Log4j2 Security Bulletin (CVE-2021-44228) (amazon.com) https://aws.amazon.com/security/security-bulletins/AWS-2021-005/

Community Resources

Resource Link
source https://aws.amazon.com/security/security-bulletins/AWS-2021-006/

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL CloudHSM JCE SDK 3.4.1 or higher is not vulnerable

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link Apache Log4j2 Security Bulletin (CVE-2021-44228) (amazon.com).