Vendor Patch Exists
VulnerableVendor Resources
| Resource | Link |
|---|---|
| Apache Log4j2 Security Bulletin (CVE-2021-44228) (amazon.com) | https://aws.amazon.com/security/security-bulletins/AWS-2021-005/ |
Community Resources
| Resource | Link |
|---|---|
| source | https://aws.amazon.com/security/security-bulletins/AWS-2021-006/ |
Community Notes
| Source | Note |
|---|---|
| NCSC-NL | CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix |
| NCSC-NL | Vulnerable when using aws-lambda-java-log4j2 |
Sources
| Date | Attribution | Description |
|---|---|---|
| 2021-12-27 15:29:04 | NCSC-NL | Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note. |
| 2021-12-30 21:31:50 | CISAGov | Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Apache Log4j2 Security Bulletin (CVE-2021-44228) (amazon.com). |