Rapid7 InsightOps r7insight_java logging library

Vendor Data

Vendor Patch Exists

Community Data

Vulnerable

Vendor Resources

Resource	Link
Rapid7 Statement	https://www.rapid7.com/blog/post/2021/12/14/update-on-log4shells-impact-on-rapid7-solutions-and-systems/?mkt_tok=NDExLU5BSy05NzAAAAGBVaccW1DOLSfEsfTNwEJksv_1nK1muJSFze-Lle90mKtAO78nSdjwPdzqXskNIi9qZCAGQODD42mYRK4YPlQkjhn38E27HQxFHdHAkypEOsh8

Community Resources

Resource	Link
Rapid7 Statement	https://www.rapid7.com/blog/post/2021/12/14/update-on-log4shells-impact-on-rapid7-solutions-and-systems/?mkt_tok=NDExLU5BSy05NzAAAAGBVaccW1DOLSfEsfTNwEJksv_1nK1muJSFze-Lle90mKtAO78nSdjwPdzqXskNIi9qZCAGQODD42mYRK4YPlQkjhn38E27HQxFHdHAkypEOsh8

Community Notes

Source	Note
NCSC-NL	CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL	“Upgrade r7insight_java to 3.0.9”
CISAGov	Upgrade r7insight_java to 3.0.9
CISAGov	Last Update: 12/15/2021

Sources

Date	Attribution	Description
2022-01-03 13:10:52	NCSC-NL	Updated vendorPatchExists. Updated community note. Updated community link Rapid7 Statement. Updated community note.
2021-12-30 21:31:50	CISAGov	Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link Rapid7 Statement. Updated community note. Updated community note.