APC by Schneider Electric Powerchute Network Shutdown

Vendor Data

Vendor Patch Exists

Community Data

Vendor Resources

Resource	Link
https://community.exchange.se.com/t5/APC-UPS-Data-Center-Backup/Log4-versions-used-in-Powerchute-vulnerable/m-p/379866/highlight/true#M47345	https://community.exchange.se.com/t5/APC-UPS-Data-Center-Backup/Log4-versions-used-in-Powerchute-vulnerable/m-p/379866/highlight/true#M47345

Community Resources

Resource	Link
source	https://community.exchange.se.com/t5/APC-UPS-Data-Center-Backup/Log4-versions-used-in-Powerchute-vulnerable/m-p/379866/highlight/true#M47345

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	Mitigation instructions to remove the affected class.
CISAGov	Mitigation instructions to remove the affected class.
CISAGov	Last Update: 12/15/2021

Sources

Date	Attribution	Description
2021-12-31 9:06:53	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50	CISAGov	Updated vendor link https://community.exchange.se.com/t5/APC-UPS-Data-Center-Backup/Log4-versions-used-in-Powerchute-vulnerable/m-p/379866/highlight/true#M47345. Updated community note. Updated community note.