A | B | C | D | E | F | G | H | I | J | |
---|---|---|---|---|---|---|---|---|---|---|
1 | vendor | product | affected_versions | patched_versions | status | vendor_links | notes | references | reporter | last_updated |
8 | ABB | AlarmInsight Cloud | Not Affected | link | cisagov | |||||
9 | ABB | B&R Products | Not Affected | link | cisagov | |||||
10 | ABB | Remote Service | Fixed | link | cisagov | |||||
35 | Accruent | VxSustain | Fixed | link | cisagov | |||||
45 | Acronis | MassTransit | Not Affected | link | cisagov | |||||
48 | Acunetix | 360 | Not Affected | link | cisagov | |||||
52 | Acunetix | IAST - NodeJS | Not Affected | link | cisagov | |||||
53 | Acunetix | IAST - PHP | Not Affected | link | cisagov | |||||
54 | Acunetix | IAST-Java | All | Fixed | link | AcuSensor IAST module needs attention. | cisagov | |||
64 | Adobe | Experience Manager 6.5 Forms Designer | Fixed | link | cisagov | |||||
74 | AFHCAN Global LLC | AFHCANcart | Not Affected | link | cisagov | |||||
76 | AFHCAN Global LLC | AFHCANServer | Not Affected | link | cisagov | |||||
81 | Ahsay | Mobile | Not Affected | link | cisagov | |||||
84 | AIL | All | Not Affected | link | cisagov | |||||
85 | Akamai | Enterprise Application Access (EAA) Connector | Not Affected | link | cisagov | |||||
87 | Akamai | SIEM Splunk Connector | < 1.4.10 | Fixed | link | Akamai SIEM Integration Connector for Splunk is not vulnerable to CVE-2021-44228. Although it includes the vulnerable Log4J component, it is not used by the connector. | cisagov | |||
88 | Alcatel | All | Unknown | link | cisagov | |||||
91 | Alfresco | Alfresco | Not Affected | link | cisagov | |||||
92 | AlienVault | All | Unknown | link | cisagov | |||||
96 | Alphatron Medical | Zorgbericht | Not Affected | link | cisagov | |||||
99 | Amazon | Athena | Fixed | link | cisagov | |||||
102 | Amazon | AWS AppFlow | Fixed | link | cisagov | |||||
123 | Amazon | AWS KMS | Fixed | link | cisagov | |||||
136 | Amazon | AWS Textract | Fixed | link | cisagov | |||||
138 | Amazon | Cloud Directory | Fixed | link | cisagov | |||||
139 | Amazon | CloudFront | Fixed | link | cisagov | |||||
140 | Amazon | CloudWatch | Fixed | link | cisagov | |||||
141 | Amazon | Cognito | Fixed | link | cisagov | |||||
142 | Amazon | Corretto | Not Affected | link | 10/19 release distribution does not include Log4j. Vulnerable only if customers applications use affected versions of Apache Log4j. | cisagov | ||||
143 | Amazon | DocumentDB | Fixed | link | cisagov | |||||
144 | Amazon | EC2 | Fixed | link | Packages for Amazon Linux 1 and 2 not affected, package for Amazon Linux 2022 is affected. | cisagov | ||||
145 | Amazon | ECR Public | Fixed | link | Amazon-owned images published under a Verified Account on Amazon ECR Public are not affected by the Log4j issue. | cisagov | ||||
146 | Amazon | Elastic Load Balancing | Fixed | link | Services have been updated. All Elastic Load Balancers, as well as Classic, Application, Network and Gateway, are not affected by this Log4j issue. | cisagov | ||||
147 | Amazon | EMR | Fixed | link | Many customers are estimated to be vulnerable. Vulnerable only if affected EMR releases are used and untrusted sources are configured to be processed. | cisagov | ||||
148 | Amazon | EventBridge | Fixed | link | cisagov | |||||
149 | Amazon | Fraud Detector | Fixed | link | cisagov | |||||
150 | Amazon | Inspector | Fixed | link | cisagov | |||||
151 | Amazon | Inspector Classic | Fixed | link | cisagov | |||||
152 | Amazon | Kafka (MSK) | Fixed | link | Applying updates as required, portion of customers may still be vulnerable. Some MSK-specific service components use Log4j > 2.0.0 library and are being patched where needed. | cisagov | ||||
153 | Amazon | Kendra | Fixed | link | cisagov | |||||
154 | Amazon | Keyspaces (for Apache Cassandra) | Fixed | link | cisagov | |||||
156 | Amazon | Kinesis Data Analytics | Fixed | link | cisagov | |||||
157 | Amazon | Lake Formation | Fixed | link | Update in progress, portion of customers may still be vulnerable. AWS Lake Formation service hosts are being updated to the latest version of Log4j. | cisagov | ||||
158 | Amazon | Lex | Fixed | link | cisagov | |||||
159 | Amazon | Linux (AL1) | Not Affected | link | By default not vulnerable. Opt-in hot-patch to mitigate the Log4j in JVM layer issue is available. | cisagov | ||||
160 | Amazon | Linux (AL2) | Fixed | link | By default not vulnerable, and a new version of Amazon Kinesis Agent which is part of AL2 addresses the Log4j issue. Opt-in hot-patch to mitigate the Log4j issue in JVM layer is available. | cisagov | ||||
161 | Amazon | Lookout for Equipment | Fixed | link | cisagov | |||||
162 | Amazon | Macie | Fixed | link | cisagov | |||||
163 | Amazon | Macie Classic | Fixed | link | cisagov | |||||
164 | Amazon | Managed Workflows for Apache Airflow (MWAA) | Fixed | link | cisagov | |||||
269 | Aruba Networks | ArubaOS-S Switches | Not Affected | link | cisagov | |||||
307 | Atvise | All | Not Affected | link | The security vulnerability does NOT affect our applications and products or pose any threat. This applies to all Bachmann applications and products, including atvise solutions. | cisagov | ||||
488 | BMC | BMC Helix Cloud Security | Unknown | link | cisagov | |||||
489 | BMC | BMC Helix CMDB | Unknown | link | cisagov | |||||
490 | BMC | BMC Helix Continuous Optimization | Unknown | link | cisagov | |||||
492 | BMC | BMC Helix Digital Workplace | Unknown | link | cisagov | |||||
493 | BMC | BMC Helix Discovery | Unknown | link | cisagov | |||||
494 | BMC | BMC Helix ITSM | Unknown | link | cisagov | |||||
495 | BMC | BMC Helix Knowledge Management | Unknown | link | cisagov | |||||
497 | BMC | BMC Helix Platform | Unknown | link | cisagov | |||||
499 | BMC | BMC Helix Remediate | Unknown | link | cisagov | |||||
502 | BMC | BMC Helix Virtual Agent | Unknown | link | cisagov | |||||
504 | BMC | Control-M | Unknown | link | cisagov | |||||
505 | BMC | Footprints | Unknown | link | cisagov | |||||
506 | BMC | MainView Middleware Administrator | Unknown | link | cisagov | |||||
508 | BMC | Remedy ITSM (IT Service Management) | Unknown | link | cisagov | |||||
509 | BMC | SmartIT | Unknown | link | cisagov | |||||
510 | BMC | Track-It! | Unknown | link | cisagov | |||||
512 | BMC | TrueSight Automation for Servers | Unknown | link | cisagov | |||||
513 | BMC | TrueSight Capacity Optimization | Unknown | link | cisagov | |||||
519 | Box | Unknown | link | cisagov | ||||||
521 | BrightSign | Unknown | link | cisagov | ||||||
523 | Broadcom | Automic Automation | Unknown | link | cisagov | |||||
528 | Broadcom | Cloud Workload Protection (CWP) | Unknown | link | cisagov | |||||
532 | Broadcom | Critical System Protection (CSP) | Unknown | link | cisagov | |||||
545 | Broadcom | Management Center (MC) | Unknown | link | cisagov | |||||
547 | Broadcom | PolicyCenter (PC) S-Series | Unknown | link | cisagov | |||||
548 | Broadcom | Privileged Access Manager | Unknown | link | cisagov | |||||
549 | Broadcom | Privileged Access Manager Server Control | Unknown | link | cisagov | |||||
551 | Broadcom | ProxySG | Unknown | link | cisagov | |||||
552 | Broadcom | Reporter | Unknown | link | cisagov | |||||
553 | Broadcom | Secure Access Cloud (SAC) | Unknown | link | cisagov | |||||
570 | Broadcom | VIP | Unknown | link | cisagov | |||||
580 | Canon | CT Medical Imaging Products | Not Affected | link | cisagov | |||||
618 | Cisco | Cisco ASR 5000 Series Routers | Unknown | link | cisagov | |||||
622 | Cisco | Cisco CloudCenter Suite Admin | Unknown | link | cisagov | |||||
650 | Cisco | Cisco Identity Services Engine (ISE) | Unknown | link | cisagov | |||||
652 | Cisco | Cisco Intersight | Unknown | link | cisagov | |||||
659 | Cisco | Cisco Kinetic for Cities | Unknown | link | cisagov | |||||
663 | Cisco | Cisco Modeling Labs | Unknown | link | cisagov | |||||
665 | Cisco | Cisco Network Assurance Engine | Unknown | link | cisagov | |||||
666 | Cisco | Cisco Network Convergence System 2000 Series | Unknown | link | cisagov | |||||
669 | Cisco | Cisco Nexus 5500 Platform Switches | Unknown | link | cisagov | |||||
670 | Cisco | Cisco Nexus 5600 Platform Switches | Unknown | link | cisagov | |||||
671 | Cisco | Cisco Nexus 6000 Series Switches | Unknown | link | cisagov | |||||
673 | Cisco | Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode | Unknown | link | cisagov | |||||
679 | Cisco | Cisco Paging Server | Unknown | link | cisagov | |||||
680 | Cisco | Cisco Paging Server (InformaCast) | Unknown | link | cisagov | |||||
681 | Cisco | Cisco PDSN/HA Packet Data Serving Node and Home Agent | Unknown | link | cisagov |