Security Advisories / Bulletins / vendors Responses linked to Log4Shell (CVE-2021-44228)
Errors, typos, something to say ?
- If you want to add a link, comment or send it to me
- Feel free to report any mistake directly below in the comment or in DM on Twitter @SwitHak
Other great resources
- Royce Williams list sorted by vendors responses Royce List
- Very detailed list NCSC-NL
- The list maintained by U.S. Cybersecurity and Infrastructure Security Agency: CISA List
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
0-9
https://1password.community/discussion/comment/622612/#Comment_622612
1Password :https://www.2n.com/cs_CZ/novinky/produkty-2n-neohrozuje-zranitelnost-cve-2021-44228-komponenty-log4j-2
2n :https://www.2wcom.com/2wcom-not-using-log4j/
2wcom :https://www.3cx.com/community/threads/log4j-vulnerability-cve-2021-44228.86436/#post-407911
3CX :https://support.3mhis.com/app/account/updates/ri/5210
3HMIS :https://sourceforge.net/p/sevenzip/discussion/45797/thread/b977bbd4d1/
7-Zip :https://support.8x8.com/support-services/support/Apache_Log4j_2_Vulnerability
8x8 :A
https://support.a10networks.com/support/security_advisory/log4j-cve-2021-44228-cve-2021-45046/
A10 Networks :https://search.abb.com/library/Download.aspx?DocumentID=9ADB012621&LanguageCode=en&DocumentPartId=&Action=Launch
ABB :https://www.accellence.de/en/articles/national-vulnerability-database-62
Accellence :https://support.acquia.com/hc/en-us/articles/4415823329047-Apache-log4j-CVE-2021-44228
Acquia :https://security-advisory.acronis.com/advisories/SEC-3859
Acronis :https://www.activestate.com/blog/activestate-statement-java-log4j-vulnerability/
ActiveState :https://www.acunetix.com/blog/web-security-zone/critical-alert-log4shell-cve-2021-44228-in-log4j-possibly-the-biggest-impact-vulnerability-ever/
Acunetix :https://ask.adaptec.com/app/answers/detail/a_id/17523/kw/log4j
Adaptec :https://addigy.com/blog/addigy-and-apaches-log4j2-cve-2021-44228-status/
Addigy :https://support.adeptia.com/hc/en-us/articles/4412815509524-CVE-2021-44228-Log4j2-Vulnerability-Mitigation-
Adeptia :https://helpx.adobe.com/coldfusion/kb/log4j-vulnerability-coldfusion.html
Adobe ColdFusion :https://www.adp.com/about-adp/data-security/alerts/adp-vulnerability-statement-apache-log4j-vulnerability-cve-2021-44228.aspx
ADP :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996900
Adva :https://help.afas.nl/vraagantwoord/NL/SE/120439.htm
AFAS Software :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995221
Agenda :https://info.agilysys.com/webmail/76642/2001127877/c3fda575e2313fac1f6a203dc6fc1db2439c3db0da22bde1b6c1b6747d7f0e2f
Agilysys :https://www.akamai.com/blog/news/CVE-2021-44228-Zero-Day-Vulnerability
Akamai :https://alexion.nl/blog/alexion-crm-niet-vatbaar-voor-log4shell
Alexion :https://dokuwiki.alu4u.com/doku.php?id=log4j
Alcatel :https://help.alertus.com/s/article/Security-Advisory-Log4Shell-Vulnerability?language=en_US
Alertus :https://hub.alfresco.com/t5/alfresco-content-services-blog/cve-2021-44228-related-to-apache-log4j-security-advisory/ba-p/310717
Alfresco :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3994072
AlgoSec UNOFICIAl :https://success.alienvault.com/s/article/are-USM-Anywhere-or-USM-Central-vulnerable-to-CVE-2021-44228
AlienVault :https://www.alphatronmedical.com/home.html
Alphatron Medical :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995170
Altaro :https://www.ami.com/ami-analysis-and-response-to-cve-2021-44228-log4j-vulnerability/
AMI :https://www.anaqua.com/
Anaqua :https://blogs.apache.org/security/entry/cve-2021-44228
APACHE Global :https://apereo.github.io/2021/12/11/log4j-vuln/
Apero CAS :https://status.apigee.com/incidents/3cgzb0q2r10p
Apigee :https://community.apollographql.com/t/log4j-vulnerability/2214
Apollo :https://docs.appdynamics.com/display/PAA/Security+Advisory%3A+Apache+Log4j+Vulnerability
Appdynamics :https://community.appeon.com/index.php/qna/q-a/apache-log4j2-remote-code-execution-vulnerability-cve-2021-44228-and-powerbuilder-infomaker#reply-31358
Appeon :https://www.appgate.com/blog/appgate-sdp-unaffected-by-log4j-vulnerability
AppGate :https://www.appviewx.com/blogs/apache-log4j-cve-2021-44228-vulnerability-zero-trust-networks-are-the-future/
AppviewX :https://community.appsheet.com/t/appsheet-statement-on-log4j-vulnerability-cve-2021-44228/59976
APPSHEET :https://status.aptible.com/incidents/gk1rh440h36s?u=zfbcrbt2lkv4
Aptible :https://docs.google.com/document/d/e/2PACX-1vSmFR3oHPXOih1wENKd7RXn0dsHzgPUe91jJwDTsaVxJtcJEroktWNLq7BMUx9v7oDZRHqLVgkJnqCm/pub
Aqua Security :https://www.arcanoae.com/apache-log4j-vulnerability-cve-2021-44228/
Arca Noae :https://support.arduino.cc/hc/en-us/articles/4412377144338-Arduino-s-response-to-Log4j2-vulnerability-CVE-2021-44228
Arduino :https://connectsupport.ariba.com/sites#announcements-display&/Event/908469
Ariba :https://www.arista.com/en/support/advisories-notices/security-advisories/13425-security-advisory-0070
Arista :https://twitter.com/ArraySupport/status/1470141638571745282
ArrayNetworks :https://twitter.com/Arcserve/status/1470571214263361537
ArcServe :https://arcticwolf.com/resources/blog/log4j
ArcticWolf :https://asp.arubanetworks.com/notifications/Tm90aWZpY2F0aW9uOjEwMTQ0;notificationCategory=Security
Aruba Networks:https://esupport.aspentech.com/S_Article?id=000099310
AspenTech :https://www.ataccama.com/files/log4j2-vulnerability-cve-2021-44228-fix.pdf
Ataccama :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3999431
Atempo :https://www.reddit.com/r/atera/comments/rh7xb1/apache_log4j_2_security_advisory_update/
Atera :https://www.attivonetworks.com/wp-content/uploads/2021/12/Log4j_Vulnerability-Advisory-211213-4.pdf
Attivo networks :https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html
Atlassian :https://services.audiocodes.com/app/answers/kbdetail/a_id/2225
AudioCodes :https://www.autopsy.com/autopsy-and-log4j-vulnerability/
Autopsy :https://twitter.com/auth0/status/1470086301902721024
Auth0 :https://knowledge.autodesk.com/support/autocad/troubleshooting/caas/sfdcarticles/sfdcarticles/CVE-2021-44228.html
Autodesk :https://blog.automox.com/log4j-critical-vulnerability-scores-a-10
Automox :https://status.auvik.com/incidents/58bfngkz69mj
Auvik :https://support.avantra.com/support/solutions/articles/44002291388-cve-2021-44228-log4j-2-vulnerability
Avantra SYSLINK :https://support.avaya.com/helpcenter/getGenericDetails?detailId=1399839287609
Avaya :https://www.avepoint.com/company/java-zero-day-vulnerability-notification
AVEPOINT :https://avm.de/service/aktuelle-sicherheitshinweise/#Schwachstelle%20im%20Java-Projekt%20%E2%80%9Elog4j%E2%80%9C
AVM :https://avtech.com/articles/23124/java-exploit-room-alert-link/
AvTech RoomAlert :https://aws.amazon.com/security/security-bulletins/AWS-2021-006/
AWS New :https://aws.amazon.com/security/security-bulletins/AWS-2021-005/
AWS OLD:https://www.axsguard.com/en_US/blog/security-news-4/log4j-vulnerability-77
AXS Guard :https://support.axway.com/news/1331/lang/en
Axway Applications :https://my.axon.com/s/trust/response-to-log4j2-vuln?language=en_US
AXON :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996387
AxxonSoft :https://github.com/Azure/azure-data-lake-store-java/blob/ed5d6304783286c3cfff0a1dee457a922e23ad48/CHANGES.md#version-2310
AZURE Datalake store java :B
https://www.buw-soft.de/en/2021/12/20/investigation-about-log4j-vulnerability-of-bw-products/
B&W Software :https://updates.backbox.com/V6.5/Docs/CVE-2021-44228.pdf
BackBox :https://twitter.com/backblaze/status/1469477224277368838
BACKBLAZE :https://www.balbix.com/blog/broad-exposure-to-log4shell-cve-2021-44228-highlights-how-the-attack-surface-has-exploded/
Balbix :https://forum.baramundi.com/index.php?threads/baramundi-produkte-von-log4shell-schwachstelle-in-log4j-nicht-betroffen.12539/#post-62875
Baramundi Products :https://www.barco.com/en/support/knowledge-base/kb12495
Barco :https://www.barracuda.com/company/legal/trust-center
Barracuda :https://www.bbraun.com/en/products-and-therapies/services/b-braun-vulnerability-disclosure-policy/security-advisory/b-braun-statement-on-Apache_Log4j.html
BBraun :https://cybersecurity.bd.com/bulletins-and-patches/third-party-vulnerability-apache-log4j
BD :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995524
BEC Legal Systems :https://www.bender.de/en/cert
Bender :https://bestpractical.com/blog/2021/12/request-tracker-rt-and-request-tracker-for-incident-response-rtir-do-not-use-log4j
Best Practical Request Tracker (RT) and Request Tracker for Incident Response (RTIR) :https://beyondtrustcorp.service-now.com/kb_view.do?sysparm_article=KB0016542
BeyondTrust Bomgar :bigbluebutton/bigbluebutton#13897 (comment)
BigBlueButton :https://www.bisecthosting.com/clients/index.php?rp=/knowledgebase/205/Java-Log4j-Vulnerability.html
BisectHosting :https://businessinsights.bitdefender.com/security-advisory-bitdefender-response-to-critical-0-day-apache-log4j2-vulnerability
BitDefender :https://docs.bitnami.com/general/security/security-2021-12-10/
BitNami By VMware :https://blog.bitrise.io/post/bitrises-response-to-log4j-vulnerability-cve-2021-44228
BitRise :https://community.bitwarden.com/t/log4j-log4shell-cve-is-bitwarden-affected-due-to-docker-image/36177/2
BitWarden :https://kb.blackbaud.com/knowledgebase/articles/Article/198103
BlackBaud :https://blackkite.com/log4j-rce-vulnerability-log4shell-puts-millions-at-risk/
Black Kite :https://support.blancco.com/display/NEWS/2021/12/12/CVE-2021-44228+-+Critical+vulnerability+in+Apache+Log4j+library
Blancco :https://www.blumira.com/cve-2021-44228-log4shell/
Blumira :https://community.bmc.com/s/news/aA33n000000TSUdCAO/bmc-security-advisory-for-cve202144228-log4shell-vulnerability
BMC Software :https://community.boomi.com/s/article/Log4j-Vulnerability
Boomi DELL :https://blog.box.com/boxs-statement-recent-log4j-vulnerability-cve-2021-44228
Box :https://www.brainworks.de/log4j-exploit-kerio-connect-workaround/
Brainworks :https://brightsign.atlassian.net/wiki/spaces/DOC/pages/370679198/Security+Statement+Log4J+Meltdown+and+Spectre+Vulnerabilities#SecurityStatement%3ALog4J%2CMeltdownandSpectreVulnerabilities-JavaApacheLog4j
BrightSign :https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793
Broadcom :https://knowledge.broadcom.com/external/article?articleId=230308
Broadcom Automic Automation :https://bsoft.zendesk.com/hc/en-us/articles/4411821391631-Security-Advisory-Apache-Log4j-CVE-2021-44228-
BuildSoft :C
https://www.c4b.com/de/news/log4j.php
C4b XPHONE :https://caddy.community/t/apache-log4j-remote-code-execution-vulnerability/14403
Caddy :https://twitter.com/calyptix/status/1470498981147029507
Calyptix Security :https://forum.camunda.org/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228/31910
Camunda :https://www.canon.com.au/support/support-news/support-news/security-advisory-potential-apache-log4j-vulnerability
Canon :https://www.vmware.com/security/advisories/VMSA-2021-0028.html
CarbonBlack :https://helpdesk.cas.de/CASHelpdesk/FAQDetails.aspx?gguid=0x79F9E881EE3C46C1A71BE9EB3E480446
CAS genesisWorld :https://www.catonetworks.com/blog/cato-networks-rapid-response-to-the-apache-log4j-remote-code-execution-vulnerability/
Cato Networks :https://support.celiveo.com/support/solutions/articles/79000129570-cve-2021-44228-log4shell-log4j-vulnerability-celiveo-is-not-affected-
Celiveo :https://www.celopeers.com/s/article/Celonis-Advisory-CVE-2021-44228
Celonis :https://support.cerberusftp.com/hc/en-us/articles/4412448183571-Cerberus-is-not-affected-by-CVE-2021-44228-log4j-0-day-vulnerability
Cerberus FTP :https://twitter.com/cerebrateproje1/status/1470347775141421058
Cerebrate :https://github.com/lmenezes/cerebro/blob/main/conf/logback.xml#L5
Cerebro :https://www.cgm.com/deu_de/plattformen/telematikinfrastruktur/service-und-updates/allgemeines-zu-updates/Information-zur-BSI-Warnmeldung.html
CGM CompuGroup Medical SE & Co. KGaA Germany - Software Z1 :https://chasersystems.com/discrimiNAT/blog/log4shell-and-its-traces-in-a-network-egress-filter/#are-chasers-products-affected
ChaserSystems :jenkinsci/checkmarx-plugin#83
Checkmarx plugin :https://forum.checkmk.com/t/checkmk-not-affected-by-log4shell/28643/3
CheckMK :https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk176865
CheckPoint :https://www.ciphermail.com/blog/ciphermail-gateway-and-webmail-messenger-are-not-vulnerable-to-cve-2021-44228.html
Ciphermail :https://cisecurity.atlassian.net/servicedesk/customer/portal/15/article/2434301961
CIS :https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd
Cisco:https://support.citrix.com/article/CTX335705
Citrix :https://community.claris.com/en/s/article/Q-A-Claris-products-and-the-Apache-Log4j-vulnerability
Claris :https://my.cloudera.com/knowledge/TSB-2021-545-Critical-vulnerability-in-log4j2-CVE-2021-44228?id=332019
Cloudera :https://blog.cloudflare.com/cve-2021-44228-log4j-rce-0-day-mitigation/
CloudFlare :https://www.cloudfoundry.org/blog/log4j-vulnerability-cve-2021-44228-impact-on-cloud-foundry-products/
CloudFoundry :https://cloudian-support.force.com/s/article/SECURITY-Cloudian-HyperStore-Log4j-vulnerability-CVE-2021-44228
Cloudian HyperStore :https://community.cloudogu.com/t/security-vulnerability-log4shell-cve-2021-44228/417
Cloudogu :https://forum.cloudron.io/topic/6153/log4j-and-log4j2-library-vulnerability?lang=en-US
Cloudron :https://community.clover.com/articles/35868/apache-log4j-vulnerability-cve-2021-44228.html
Clover :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-4002005
CMND.io :https://forums.cpanel.net/threads/log4j-cve-2021-44228-does-it-affect-cpanel.696249/
CPanel :https://support.code42.com/Terms_and_conditions/Code42_customer_support_resources/Code42_response_to_industry_security_incidents
Code42 :https://codebeamer.com/cb/wiki/19872365
CodeBeamer :https://www.codesys.com/news-events/news/article/log4j-not-used-in-codesys.html
Codesys :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995424
CodeTwo :https://support.cohesity.com/s/article/Security-Advisory-Apache-Log4j-Remote-Code-Execution-RCE-CVE-2021-44228
Cohesity :https://documentation.commvault.com/v11/essential/146231_security_vulnerability_and_reporting.html
CommVault :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996774
Comrex :https://www.concretecms.com/about/blog/security/concrete-log4j-zero-day-exploit
ConcreteCMS.com :https://support.confluent.io/hc/en-us/articles/4412615410580-CVE-2021-44228-log4j2-vulnerability
Confluent :https://connect2id.com/blog/connect2id-server-12-5-1
Connect2id :https://www.connectwise.com/company/trust/advisories
ConnectWise :https://support.contrastsecurity.com/hc/en-us/articles/4412612486548
ContrastSecurity :https://status.controlup.com/incidents/qqyvh7b1dz8k
ControlUp :https://www.copadata.com/en/support-services/knowledge-base-faq/pare-products-in-the-zenon-product-family-affect-4921/
COPADATA :https://twitter.com/Coralogix/status/1469713430659559425
Coralogix :https://forums.couchbase.com/t/ann-elasticsearch-connector-4-3-3-4-2-13-fixes-log4j-vulnerability/32402
CouchBase :https://cradlepoint.com/vulnerability-alerts/cve-2021-44228-apache-log4j-security-vulnerabilities/
Cradlepoint :crate/crate#11968 (comment)
Crate CrateDB :https://www.crestron.com/Security/Security_Advisories/Apache-Log4j
Crestron :https://www.crushftp.com/download.html
CrushFTP :https://www.cryptshare.com/en/support/cryptshare-support/#c67572
CryptShare :https://status.cumul.io/#incidents
Cumul.iohttps://twitter.com/bagder/status/1470879113116360706
CURL libcurl :https://cyberark-customers.force.com/s/article/Critical-Vulnerability-CVE-2021-44228
CyberArk :https://www.cybereason.com/blog/cybereason-solutions-are-not-impacted-by-apache-log4j-vulnerability-cve-2021-44228
Cybereason :https://community.microfocus.com/cyberres/b/sws-22/posts/summary-of-cyberres-impact-from-log4j-or-logshell-logjam-cve-2021-44228
CyberRes :https://cytoscape.org/common_issues.html#log4shell
Cytoscape :D
https://customerportal.darktrace.com/inside-the-soc/get-article/201
DarkTrace :https://twitter.com/DashlaneSupport/status/1470933847932030976
Dashlane :https://kb.dsxclient.3ds.com/mashup-ui/page/resultqa?id=QA00000102301e
Dassault Systèmes :https://docs.google.com/document/d/e/2PACX-1vREjwZk17BAHGwj5Phizi4DPFS9EIUbAMX-CswlgbFwqwKXNKZC8MrT-L6wUgfIChsSHtvd_QD3-659/pub
Databricks :https://www.datadoghq.com/log4j-vulnerability/
DataDog :https://community.dataminer.services/responding-to-log4shell-vulnerability/
Dataminer :https://www.datev-community.de/t5/Freie-Themen/Log4-J-Schwachstelle/m-p/258185/highlight/true#M14308
Datev :https://www.datto.com/blog/dattos-response-to-log4shell
Datto :https://www.dcache.org/post/log4j-vulnerability/
dCache.org :dcm4che/dcm4che#1050
DCM4CHE.org :https://security-tracker.debian.org/tracker/CVE-2021-44228
Debian :https://www.deepinstinct.com/blog/log4shell-cve-2021-44228-what-you-need-to-know
Deepinstinct :https://www.dell.com/support/kbdoc/en-us/000194372/dsn-2021-007-dell-response-to-apache-log4j-remote-code-execution-vulnerability
Dell :https://www.dell.com/support/kbdoc/en-us/000194416/additional-information-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228
DELL :https://denequa.de/log4j-information.html
Denequa :https://blog.device42.com/2021/12/13/log4j-zero-day/
Device42 :https://blog.devolutions.net/2021/12/critical-vulnerability-in-log4j/
Devolutions :https://www.dieboldnixdorf.com/en-us/apache
Diebold Nixdorf :https://knowledge.digicert.com/alerts/digicert-log4j-response.html
Digicert :https://forum.digilentinc.com/topic/22531-has-waveforms-been-affected-by-the-log4j-vulnerability-cve-2021-44228/
Digilent waveforms :https://support.digital.ai/hc/en-us/articles/4412377686674-Log4J-Vulnerability-to-Zero-Day-Exploit-and-Digital-ai#overview-0-1
Digital AI :https://www.dnsfilter.com/blog/dnsfilter-response-to-log4j-vulnerability
DNSFilter :https://www.docker.com/blog/apache-log4j-2-cve-2021-44228/
Docker :https://www.docusign.com/trust/alerts/alert-docusign-statement-on-the-log4j2-vulnerability
Docusign :https://twitter.com/drawio/status/1470061320066277382
DRAW.IO :https://www.draytek.co.uk/support/security-advisories/kb-advisory-dec2021-log4j
DrayTek :https://twitter.com/dropwizardio/status/1469285337524580359
DropWizard :https://groups.google.com/g/dspace-community/c/Fa4VdjiiNyE
DSpace :https://community.dynatrace.com/t5/Dynatrace-Open-Q-A/Impact-of-log4j-zero-day-vulnerability/m-p/177259/highlight/true#M19282
DynaTrace :E
https://www.easyredmine.com/news/easy-redmine-application-is-not-affected-by-the-vulnerability-cve-2021-44228
EasyRedmine :https://docs.eclecticiq.com/security-advisories/security-issues-and-mitigation-actions/eiq-2021-0016-2
EclecticIQ :https://wiki.eclipse.org/Eclipse_and_log4j2_vulnerability_(CVE-2021-44228)
Eclipse Foundation :https://communities.efi.com/s/article/Are-Fiery-Servers-vulnerable-to-CVE-2021-44228-Apache-Log4j2?language=en_US
EFI :https://help.egroupware.org/t/uk-de-statement-log4j-log4shell/76430
EGroupware :ehrbase/ehrbase#700
EHRBase :https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476
Elastic :https://www.ellucian.com/news/ellucian-response-apache-log4j-issue
Ellucian (Banner and Colleague Higher Education SIS) :https://www.emerson.com/documents/automation/emerson-cyber-security-notification-en-7881618.pdf
Emerson :https://enterprisedt.com/blogs/announcements/enterprisedt-does-not-use-log4j/
EnterpriseDT :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996932
EPICOR :https://blog.ericom.com/ericom-software-products-and-the-log4shell-exploit-cve-2021-44228/
ERICOM :https://forum.step.esa.int/t/snap-not-affected-by-log4j-vulnerability/34167
ESA SNAP Toolbox :https://support.eset.com/en/alert8188-information-regarding-the-log4j2-vulnerability
ESET :https://myesi.esi-group.com/support/apache-log4j-vulnerability.
ESI Group :https://www.esri.com/arcgis-blog/products/arcgis-enterprise/administration/arcgis-software-and-cve-2021-44228-aka-log4shell-aka-logjam/
ESRI :https://support.estos.de/de/sicherheitshinweise/estos-von-kritischer-schwachstelle-in-log4j-cve-2021-44228-nicht-betroffen
Estos :https://en.euro-linux.com/blog/critical-vulnerability-cve-2021-44228-in-apache-log4j/
Eurolinux :https://github.com/evllabs/JGAAP/releases/tag/v8.0.2
EVLLABS JGAAP :https://evolveum.com/midpoint-not-vulnerable-to-log4shell/
Evolveum Midpoint :https://hmsnetworks.blob.core.windows.net/www/docs/librariesprovider10/downloads-monitored/manuals/release-notes/ecatcher_releasenotes.txt?sfvrsn=4f054ad7_42
Ewon :https://community.exabeam.com/s/discussions?t=1639379479381
Exabeam :https://www.exact.com/news/general-statement-apache-leak
Exact :https://docs.exivity.com/getting-started/releases/announcements#announcement-regarding-cve-2021-44228
Exivity :https://forums.extrahop.com/t/extrahop-update-on-log4shell/8148
ExtraHop :https://extremehosting.nl/log4shell-log4j/
eXtreme Hosting :https://extremeportal.force.com/ExtrArticleDetail?an=000100806
Extreme Networks :https://www.extron.com/featured/Security-at-Extron/extron-security
Extron :F
https://support.f5.com/csp/article/K19026212
F5 Networks :https://status.f-secure.com/incidents/sk8vmr0h34pd
F-Securehttps://www.fastly.com/blog/digging-deeper-into-log4shell-0day-rce-exploit-found-in-log4j
Fastly :https://blog.fast-lta.de/en/log4j2-vulnerability
FAST LTA :https://www.fedex.com/en-us/service-alerts.html#weatherassess
FedEx :https://support.filecatalyst.com/index.php/Knowledgebase/Article/View/advisory-log4j-zero-day-security-vulnerability
FileCatalyst :https://mailchi.mp/3f82266e0717/filecap-update-version-511
FileCap :https://www.getfilecloud.com/supportdocs/display/cloud/Advisory+2021-12-2+Impact+of+Apache+Log4j2+Vulnerability+on+FileCloud+Customers
FileCloud :https://kb.filewave.com/display/KB/Security+Notice:+Apache+log4j+Vulnerability+CVE-2021-44228
FileWave :https://finvi.com/support/
FINVI :https://kb.firedaemon.com/support/solutions/articles/4000178630
FireDaemon :https://flexagon.com/what-is-the-impact-of-log4j-vulnerability-cve-2021-44228-on-flexdeploy/
Flexagon :https://community.flexera.com/t5/Community-Notices/Flexera-s-response-to-Apache-Log4j-2-remote-code-execution/ba-p/216934
Flexera :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995147
FlyWheel :https://support.forcepoint.com/s/article/CVE-2021-44228-Java-log4j-vulnerability-mitigation-with-Forcepoint-Security-Manager
ForcePoint :https://forescout.force.com/support/s/article/Important-security-information-related-to-Apache-Log4j-utility-CVE-2021-44228
Forescout :https://backstage.forgerock.com/knowledge/kb/article/a39102625
ForgeRock :https://www.fortiguard.com/psirt/FG-IR-21-245
Fortinet :https://www.ftapi.com/blog/kritische-sicherheitslucke-in-log4j-ftapi-reagiert/#
FTAPI :https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf
Fujitsu :https://fusionauth.io/blog/2021/12/10/log4j-fusionauth/
FusionAuth :G
https://docs.gearset.com/en/articles/5806813-gearset-log4j-statement-dec-2021
Gearset :https://www.genesys.com/blog/post/genesys-update-on-the-apache-log4j-vulnerability
Genesys :http://geoserver.org/announcements/2021/12/13/logj4-rce-statement.html
GeoServer :https://www.gerritcodereview.com/2021-12-13-log4j-statement.html
Gerrit code review :https://techtalk.gfi.com/impact-of-log4j-vulnerability-on-gfi/
GFI :https://github.com/NationalSecurityAgency/ghidra/blob/2c73c72f0ba2720c6627be4005a721a5ebd64b46/README.md#warning
Ghidra :https://community.gigamon.com/gigamoncp/s/article/Are-Gigamon-products-affected-by-CVE-2021-44228
Gigamon :https://github.com/advisories/GHSA-jfh8-c2jp-5v3q
GitHub :https://github.blog/2021-12-13-githubs-response-to-log4j-vulnerability-cve-2021-44228/
GitHub Response :https://forum.gitlab.com/t/cve-2021-4428/62763
GitLab :https://groups.google.com/a/globus.org/g/discuss/c/FJK0q0NoUC4
Globus :https://forum.glpi-project.org/viewtopic.php?pid=488631#p488631
GLPI Project :https://www.goanywhere.com/cve-2021-44228-goanywhere-mitigation-steps
GoAnywhere :https://www.gocd.org/2021/12/14/log4j-vulnerability.html
GoCD :https://cloud.google.com/log4j2-security-advisory
Google Cloud Global Products coverage :https://cloud.google.com/blog/products/identity-security/cloud-armor-waf-rule-to-help-address-apache-log4j-vulnerability
Google Cloud Armor WAF :https://blog.gradle.org/log4j-vulnerability
Gradle :https://grafana.com/blog/2021/12/14/grafana-labs-core-products-not-impacted-by-log4j-cve-2021-44228-and-related-vulnerabilities/
Grafana :https://blog.grandstream.com/press-releases/grandstream-products-unaffected-by-log4j-vulnerability?hsLang=en
Grandstream :https://www.facebook.com/GratWiFi/posts/396447615600785
GratWiFi WARNING I can't confirm it:https://www.gravitee.io/news/about-the-log4j-cvss-10-critical-vulnerability
Gravitee.io :https://www.gravwell.io/blog/cve-2021-44228-log4j-does-not-impact-gravwell-products
Gravwell :https://www.graylog.org/post/graylog-update-for-log4j
GrayLog :https://greenshot.atlassian.net/browse/BUG-2871
GreenShot :https://twitter.com/GuardedBox/status/1469739834117799939
GuardedBox :https://community.guidewire.com/s/article/Update-to-customers-who-have-questions-about-the-use-of-log4j-in-Guidewire-products
Guidewire :H
https://twitter.com/jobertabma/status/1469490881854013444
HackerOne :https://www.haproxy.com/blog/december-2021-log4shell-mitigation/
HAProxy :https://help.harmanpro.com/apache-log4j-vulnerability
HarmanPro AMX :https://discuss.hashicorp.com/t/hcsec-2021-32-hashicorp-response-to-apache-log4j-2-security-issue-cve-2021-44228/33138
Hashicorp :https://support.hazelcast.com/s/article/Security-Advisory-for-Log4Shell
Hazelcast :https://support.hcltechsw.com/csm/en?id=kb_article&sysparm_article=KB0095490
HCL Global :https://community.helpsystems.com/kb-nav/kb-article/?id=37becc1c-255c-ec11-8f8f-6045bd006687
HelpSystems Clearswift :https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04215en_us
Hewlett Packard Enterprise HPE :https://techhub.hpe.com/eginfolib/securityalerts/Apache%20Software%20Log4j/Apache_Software_Log4j.html
Hewlett Packard Enterprise HPE GLOBAL :https://supportsi.hexagon.com/help/s/article/Security-Vulnerability-CVE-2021-44228-log4j-2?language=en_US
Hexagon :https://video.xortec.de/media/pdf/87/e8/03/kw50_Update-for-Apache-Log4j2-Issue-Hikvision_official.pdf
Hikvision :https://knowledge.hitachivantara.com/Support_Information/Hitachi_Vantara_Security_Advisories/CVE-2021-44228_-_Apache_Log4j2
Hitachi Vantara :https://community.home-assistant.io/t/looking-for-advice-on-log4j/367250/6
HomeAssistant :https://www.honeywell.com/us/en/press/2021/12/honeywells-statement-on-java-apache-log4j-logging-framework-vulnerability
Honeywell :https://twitter.com/hostifi_net/status/1469511114824339464
HostiFi :https://www.huawei.com/en/psirt/security-notices/huawei-sn-20211210-01-log4j2-en
Huawei :https://community.hubspot.com/t5/APIs-Integrations/Log4J-day-zero-exploit-CVE-2021-44228/td-p/541949
Hubspot :https://hyte.io/cve-2021-44228/
Hyte.IO :I
https://geti2p.net/en/blog/post/2021/12/11/i2p-unaffected-cve-2021-44228
I2P :https://faq.inetsoftware.de/t/statement-about-cve-2021-44228-log4j-vulnerability-concerning-i-net-software-products/269/3
I-Net software :https://www.iba-ag.com/en/security
IBA-AG :https://developers.ibexa.co/security-advisories/cve-2021-44228-log4j-vulnerability
Ibexa :https://www.ibm.com/support/pages/node/6525548
IBM :https://en.ids-imaging.com/news-article/information-log4j-vulnerability.html
IDS :https://community.ifs.com/announcements-278/urgent-bulletin-ifs-advisory-ifs-products-services-and-log4j-cve-2021-44228-16436
IFS :https://kb.igel.com/securitysafety/en/isn-2021-11-ums-log4j-vulnerability-54086712.html
IGEL :https://discourse.igniterealtime.org/t/openfire-4-6-5-released/91108
Ignite Realtime OpenFire :https://www.igrafx.com/igrafx-thwarts-log4j-vulnerability/
iGrafx :https://support.illumina.com/bulletins/2021/121/investigation-of-log4j-vulnerability-with-clarity-lims.html
Illumina :https://illuminatedcloud.blogspot.com/2021/12/illuminated-cloud-2-and-log4j-security.html
Illuminated Cloud :https://support.illumio.com/knowledge-base/articles/Customer-Security-Advisory-on-log4j-RCE-CVE-2021-44228.html
Illumio :https://help.imanage.com/hc/en-us/articles/4412696236699-ADVISORY-Security-vulnerability-CVE-2021-44228-in-third-party-component-Apache-Log4j2#h_3164fa6c-4717-4aa1-b2dc-d14d4112595e
IManage :https://www.imperosoftware.com/us/impero-software-and-the-log4j-vulnerability/
Impero Software :https://docs.imperva.com/howto/9111b8a5/
Imperva :https://support.inductiveautomation.com/hc/en-us/articles/4416204541709-Regarding-CVE-2021-44228-Log4j-RCE-0-day
Inductive Automation :https://www.industrialdefender.com/cve-2021-44228-log4j/
IndustrialDefender :https://support.infinidat.com/hc/en-us/articles/4413483145489-INFINIDAT-Support-Announcement-2021-010-Log4Shell-CVE-2021-44228
infinidat :https://www.influxdata.com/blog/apache-log4j-vulnerability-cve-2021-44228/
InfluxData :https://support.infoblox.com/articles/Knowledge/Infoblox-NIOS-and-BloxOne-products-not-vulnerable-to-CVE-2021-44228
Infoblox :https://network.informatica.com/community/informatica-network/blog/2021/12/10/log4j-vulnerability-update
Informatica :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996774
Inovonics Broadcast :https://status.instana.io/incidents/4zgcd2gzf4jw
Instana :https://community.canvaslms.com/t5/Community-Users/Instructure-amp-the-Apache-Log4j2-Vulnerability/ba-p/501907
Instructure :https://github.com/igvteam/igv/commit/40aa5e0c6b5f2eac0a1528658189fd7de8f20347
Integrative Genomics Viewer IGV :https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00646.html
Intel :https://www.intersystems.com/gt/apache-log4j2/
InterSystems :https://interworks.com/blog/2021/12/14/log4j-vulnerability-cve-2021-44228-information/
Interworks :https://twitter.com/Intuiface/status/1471095195664015363
Intuiface :https://quickbooks.intuit.com/learn-support/en-us/quickbooks-time/0-day-log4j-exploit/00/990291
Intuit Quickbooks :https://forum.iredmail.org/topic18605-log4j-cve202144228.html
iRedMail :https://twitter.com/IronCoreLabs/status/1469359583147659269
IronCore Labs :https://www.ironnet.com/blog/ironnet-security-notifications-related-to-log4j-vulnerability
Ironnet :https://blog.islonline.com/2021/12/13/isl-online-is-not-affected-by-log4shell-vulnerability/
ISLONLINE :https://github.com/NCSC-NL/log4shell/blob/main/software/vendor-statements/ISPNext.png
ISPNext :https://forums.ivanti.com/s/article/CVE-2021-44228-Java-logging-library-log4j-Ivanti-Products-Impact-Mapping?language=en_US
Ivanti :https://www.reddit.com/r/IVPN/comments/rgw3nd/comment/homt79k/?utm_source=share&utm_medium=web2x&context=3
IVPN :J
https://community.jamasoftware.com/communities/community-home/digestviewer/viewthread?MessageKey=06d26f9c-2abe-4c10-93d4-c0f6c8a01b22&CommunityKey=c9d20d4c-5bb6-4f19-92eb-e7cee0942d51&tab=digestviewer#bm06d26f9c-2abe-4c10-93d4-c0f6c8a01b22
Jamasoftware :https://knowledgebase.jam-software.de/7577
Jam Software :https://docs.jamf.com/technical-articles/Mitigating_the_Apache_Log4j_2_Vulnerability.html
JAMF :https://community.jaspersoft.com/wiki/apache-log4j-vulnerability-update-jaspersoft-products
Jaspersoft :https://www.ibm.com/support/pages/node/6525552
JazzSM DASH IBM :https://www.jedox.com/en/trust/
Jedox :https://www.jenkins.io/blog/2021/12/10/log4j2-rce-CVE-2021-44228/
Jenkins :https://blog.jetbrains.com/blog/2021/12/13/log4j-vulnerability-and-jetbrains-products-and-services/
JetBrains Global :https://youtrack.jetbrains.com/issue/TW-74298
JetBrains Teamcity :https://youtrack.jetbrains.com/issue/JT-67582
JetBrains YouTrack and Hub :https://jfrog.com/knowledge-base/general-jfrog-services-are-not-affected-by-vulnerability-cve-2021-44228/
JFROG :https://success.jitterbit.com/display/DOC/Mitigating+the+Apache+Log4j2+JNDI+Vulnerability
Jitterbit :https://github.com/jitsi/security-advisories/blob/4e1ab58585a8a0593efccce77d5d0e22c5338605/advisories/JSA-2021-0004.md
Jitsi :https://github.com/jpos/jPOS/commit/d615199a1bdd35c35d63c07c10fd0bdbbc96f625
JPOS :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995497
JobRouter :https://www.johnsoncontrols.com/-/media/jci/cyber-solutions/product-security-advisories/2021/jci-psa-2021-23-v3.pdf?la=en&hash=1FC58B65D948E106055CA63184EFBCAB5C7DD9A1
Johnson Controls :https://community.journyx.com/support/solutions/articles/9000209044-apache-log4j-2-vulnerability-cve-2021-44228-
Journyx :https://support.jumpdesktop.com/hc/en-us/articles/4416720395021-Log4j-CVE-2021-44228-CVE-2021-45046-Statement
Jump Desktop :https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259
Juniper Networks :https://www.justicesystems.com/services/support/
Justice Systems :K
https://help.k15t.com/k15t-apps-and-log4shell-193401141.html
K15t :https://k6.io/blog/k6-products-not-impacted-by-cve-2021-44228/
K6 :https://github.com/microsoft/kafka-connect-cosmosdb/blob/0f5d0c9dbf2812400bb480d1ff0672dfa6bb56f0/CHANGELOG.md
Kafka Connect CosmosDB :https://board.karakun.com/viewtopic.php?f=21&t=8351
Karakun :https://helpdesk.kaseya.com/hc/en-gb/articles/4413449967377-Log4j2-Vulnerability-Assessment
Kaseya :https://forum.katalon.com/t/katalon-response-to-the-log4j2-exploit-cve-2021-44228/60742/5
Katalon :https://www.keepersecurity.com/blog/2021/12/15/public-notice-regarding-the-apache-foundation-log4j-vulnerability/
Keeper Security :https://support.kemptechnologies.com/hc/en-us/articles/4416430695437-CVE-2021-44228-Log4j2-Exploit
KEMP :https://support.kemptechnologies.com/hc/en-us/articles/4416473820045-Progress-Kemp-LoadMaster-protects-from-security-vulnerability-Apache-Log4j-2-CVE-2021-44228-
KEMP 2 :keycloak/keycloak#9078
Keycloak :https://sourceforge.net/p/keepass/discussion/329220/thread/4643c5ec4f/?limit=250#c0bc
Keypass :https://blog.kie.org/2021/12/kie-log4j2-exploit-cve-2021-44228.html
KIE :https://www.kiteworks.com/kiteworks-news/log4shell-apache-vulnerability-what-kiteworks-customers-need-to-know/
KiteWorks :https://knowledge.kofax.com/MFD_Productivity/SafeCom/Product_Information/SafeCom_and_Log4j_vulnerability_(CVE-2021-44228)
Kofax :komoot/photon#620
Komoot Photon :https://www.konicaminolta.de/de-de/support/log4j
Konica Minolta :https://community.kronos.com/s/feed/0D54M00004wJKHiSAO?language=en_US
Kronos UKG :https://www.kyberna.com/detail/log4j-sicherheitsluecke
Kyberna :https://www.kyoceradocumentsolutions.de/de/support/sicherheitsluecke-Log4j.html
Kyocera :L
https://www.l3harrisgeospatial.com/Support/Self-Help-Tools/Help-Articles/Help-Articles-Detail/ArtMID/10220/ArticleID/24141/Impact-of-Log4j-Java-Security-Vulnerability-CVE-2021-44228-on-L3Harris-Geospatial-software
L3Harris Geospatial :http://www.lsoft.com/news/log4jinfo.asp
L-Soft :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995088
LabCollector :https://www.lancom-systems.com/service-support/instant-help/general-security-information/
Lancom Systems :https://www.lansweeper.com/vulnerability/critical-log4j-vulnerability-affects-millions-of-applications/
Lansweeper :https://answers.laserfiche.com/questions/194037/Do-any-Laserfiche-products-use-the-Apache-log4j-library#194038
Laserfiche :https://support.logmeininc.com/lastpass/help/log4j-vulnerability-faq-for-lastpass-universal-proxy
LastPass :https://launchdarkly.com/blog/audit-shows-systems-unaffected-by-log4j/
LaunchDarkly :https://www.leanix.net/en/blog/log4j-vulnerability-log4shell
Leanix :https://support.lenovo.com/ro/en/product_security/len-76573
Lenovo :https://support.leostream.com/support/discussions/topics/66000507567
LeoStream :https://www.lepide.com/news/lepide-statement-on-cve-2021-44228-the-apache-log4j-vulnerability/
Lepide :https://community.letsencrypt.org/t/log4j-vulnerability-cve-2021-44228/167464
Let's Encrypt :https://twitter.com/LucentSky/status/1469358706311974914
LucentSKY :https://community.librenms.org/t/is-librenms-affected-by-vulnerable-to-cve-2021-25218-cve-2021-44228/17675/6
LibreNMS :https://liferay.dev/blogs/-/blogs/log4j2-zero-day-vulnerability
LifeRay :https://community.lifesize.com/s/article/Apache-Log4j2-CVE-2021-44228
LifeSize :https://discuss.lightbend.com/t/regarding-the-log4j2-vulnerability-cve-2021-44228/9275
Lightbend :https://docs.lime-crm.com/security/lcsec21-01
Lime CRM :https://insights.liongard.com/faq-apache-log4j-vulnerability
LIONGARD :https://mailchi.mp/liquidfiles/liquidfiles-log4j?e=%5BUNIQID%5D
LiquidFiles :https://documentation.liveaction.com/LiveNX/LiveNX%2021.5.1%20Release%20Notes/Release%20Notes%20LiveNX%2021.5.1.1.3
LiveAction :https://help.loftware.com/lps-kb/content/log4j%20cve-2021-44228.htm?Highlight=CVE-2021-44228
Loftware :https://devnet.logianalytics.com/hc/en-us/articles/4415781801751-Statement-on-Log4j-Vulnerability-CVE-2021-44228-
LogiAnalytics :https://www.logicmonitor.com/support/log4shell-security-vulnerability-cve-2021-44228
LogicMonitor :https://community.logmein.com/t5/LogMeIn-Central-Discussions/LOG4J-Vulnerability/m-p/280317/highlight/true#M8327
LogMeIn :https://community.logrhythm.com/t5/Product-Security/LogRhythm-Response-to-the-Apache-Log4J-Vulnerability-Log4Shell/td-p/494068
LogRhythm :https://docs.google.com/document/d/e/2PACX-1vQGN1AYNMHxsRQ9AZNu1bKyTGRUSK_9xkQBge-nu4p8PYvBKIYHhc3914KTfVtDFIXtDhc3k6SZnR2M/pub
Looker :https://www.lucanet.com/en/blog/update-vulnerability-log4j
LucaNet :https://dev.lucee.org/t/lucee-is-not-affected-by-the-log4j-jndi-exploit-cve-2021-44228/9331/4
Lucee :M
https://twitter.com/macchina_io/status/1469611606569099269
Macchina io :mailcow/mailcow-dockerized#4375
MailCow :https://www.mailstore.com/en/blog/mailstore-affected-by-log4shell/
MailStore :https://www.maltego.com/blog/our-response-to-log4j-cve-2021-44228/
Maltego :https://pitstop.manageengine.com/portal/en/community/topic/log4j-ad-manager-plus
ManageEngine Zoho :https://pitstop.manageengine.com/portal/en/community/topic/update-on-the-recent-apache-log4j2-vulnerability-impact-on-manageengine-on-premises-products-1
ManageEngine Zoho :https://mariadb.com/resources/blog/log4shell-and-mariadb-cve-2021-44228/
MariaDB :https://insights.marinsoftware.com/marin-software/marin-software-statement-on-log4j-vulnerability/
Marin software :https://www.mathworks.com/matlabcentral/answers/1610640-apache-log4j-vulnerability-cve-2021-44228-how-does-it-affect-matlab-run-time
MathWorks Matlab :https://documentation.matillion.com/docs/security-advisory-14th-december-2021
Matillion :https://forum.matomo.org/t/matomo-is-not-concerned-by-the-log4j-security-breach-cve-2021-44228-discovered-on-december-2021-the-9th/44089
Matomo :https://forum.mattermost.org/t/log4j-vulnerability-concern/12676
Mattermost FocalBoard :https://kc.mcafee.com/corporate/index?page=content&id=KB95091
McAfee :https://mediathekview.de/changelog/13-8-1/
MediathekView.de :https://www.mediawiki.org/wiki/Wikibase/Announcements/2021-12-14/en
MediaWiki :https://www.meinbergglobal.com/english/news/meinberg-lantime-and-microsync-systems-not-at-risk-from-log4j-security-exploit.htm
MEINBERG :https://www.memurai.com/blog/apache-log4j2-cve-2021-44228
Memurai :https://status.mendix.com/incidents/8j5043my610c
Mendix :https://github.com/metabase/metabase/commit/8bfce98beb25e48830ac2bfd57432301c5e3ab37
Metabase :https://portal.microfocus.com/s/customportalsearch?language=en_US&searchtext=CVE-2021-44228
MicroFocus :https://msrc-blog.microsoft.com/2021/12/11/microsofts-response-to-cve-2021-44228-apache-log4j2/
Microsoft :https://community.microstrategy.com/s/article/MicroStrategy-s-response-to-CVE-2021-44228-The-Log4j-0-Day-Vulnerability?language=en_US
Microstrategy :https://www.midori-global.com/blog/2021/12/15/cve-2021-44228-log4shell-midori-apps-are-not-affected
Midori Global :https://forum.mikrotik.com/viewtopic.php?p=897938
Mikrotik :https://supportcommunity.milestonesys.com/s/article/Log4J-vulnerability-faq?language=en_US
Milestone sys :https://community.mimecast.com/s/article/Mimecast-Information-for-Customers-on-the-Log4Shell-Vulnerability
Mimecast :https://www.minecraft.net/en-us/article/important-message--security-vulnerability-java-edition
Minecraft :https://github.com/Mirantis/security/blob/main/news/cve-2021-44288.md
Mirantis :https://miro.com/trust/updates/log4j/
Miro :https://twitter.com/MISPProject/status/1470051242038673412
MISP :https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-21-0010
Mitel :https://www.mongodb.com/blog/post/log4shell-vulnerability-cve-2021-44228-and-mongodb
MongoDB :https://twitter.com/MONARCproject/status/1470349937443491851
MONARC Project :https://moodle.org/mod/forum/discuss.php?d=429966
Moodle :https://servicedesk.moogsoft.com/hc/en-us/articles/4412463233811?input_string=log4j+vulnerability+%7C%7C+cve-2021-44228
MoogSoft :https://support.avigilon.com/s/article/Technical-Notification-Apache-Log4j2-vulnerability-impact-on-Avigilon-products-CVE-2021-44228?language=en_US
Motorola Avigilon :https://help.mulesoft.com/s/article/Apache-Log4j2-vulnerability-December-2021
Mulesoft :N
https://www.n-able.com/security-and-privacy/apache-log4j-vulnerability
N-able :https://www.nagios.com/news/2021/12/update-on-apache-log4j-vulnerability/
Nagios :https://forum.nakivo.com/index.php?/topic/7574-log4j-cve-2021-44228/&do=findComment&comment=9145
NAKIVO :https://github.com/getnelson/nelson/blob/f4d3dd1f1d4f8dfef02487f67aefb9c60ab48bf5/project/custom.scala
NELSON :https://community.neo4j.com/t/log4j-cve-mitigation-for-neo4j/48856
NEO4J :https://security.netapp.com/advisory/ntap-20211210-0007/
NetApp :netbox-community/netbox#8052 (comment)
NetBox :https://www.netcup-news.de/2021/12/14/pruefung-log4j-sicherheitsluecken-abgeschlossen/
Netcup :https://github.com/search?q=org%3ANetflix+CVE-2021-44228&type=commits
Netflix :https://forum.netgate.com/topic/168417/java-log4j-vulnerability-is-pfsense-affected/35
NetGate PFSense :https://www.reddit.com/r/NETGEAR/comments/re5iqy/comment/ho9qlvb/
Netgear :https://www.netwrix.com/netwrix_statement_on_cve_2021_44228_the_apache_log4j_vulnerability.html
Netwrix :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995403
NewTek :https://help.nextcloud.com/t/apache-log4j-does-not-affect-nextcloud/129244
NextCloud :nextgenhealthcare/connect#4892 (comment)
NextGen Healthcare Mirth :https://doc.nexusgroup.com/pages/viewpage.action?pageId=83133294
Nexus Group :https://docs.newrelic.com/docs/security/new-relic-security/security-bulletins/security-bulletin-nr21-03/
Newrelic :https://download.enginframe.com/
Nice Software (AWS) EnginFRAME :https://ninjarmm.zendesk.com/hc/en-us/articles/4416226194189-12-10-21-Security-Declaration-NinjaOne-not-affected-by-CVE-2021-44228-log4j-
NinjaRMM :https://forums.nomachine.com/topic/apache-log4j-notification
Nomachine :https://noviflow.com/noviflow-products-and-the-log4shell-exploit-cve-2021-44228/
NoviFlow :https://www.ni.com/en-us/support/documentation/supplemental/21/ni-response-to-apache-log4j-vulnerability-.html
NI (National Instruments) :https://nsfocusglobal.com/apachelog4j-remote-code-execution-vulnerability-cve-2021-44228-threat-alert/
NSFocus :https://nulab.com/blog/company-news/log4shell/
Nulab :https://download.nutanix.com/alerts/Security_Advisory_0023.pdf
Nutanix :https://nvidia.custhelp.com/app/answers/detail/a_id/5294
Nvidia :https://nxlog.co/news/apache-log4j-vulnerability-cve-2021-44228
NXLog :O
https://learn.objectiflune.com/blog/security/statement-on-log4j-vulnerability-cve-2021-4428/
Objectif Lune :obsidiandynamics/kafdrop#315
Obsidiandynamics KAFDROP :https://oclc.service-now.com/status
OCLC :https://advisories.octopus.com/adv/December.2306508680.html
Octopus :https://sec.okta.com/articles/2021/12/log4shell
Okta :https://www.onespan.com/remote-code-execution-vulnerability-in-log4j2-cve-2018-11776
Onespan :https://forum.onlyoffice.com/t/does-onlyoffice-documentserver-uses-log4j/841
OnlyOffice :https://documentation.opencms.org/opencms-documentation/server-installation/log4j-security-vulnerability/index.html
OpenCMS :https://opengear.zendesk.com/hc/en-us/articles/4412713339419-CVE-2021-44228-aka-Log4Shell-Opengear-products-are-not-affected
Opengear :openhab/openhab-distro#1343
OpenHab :https://www.opennms.com/en/blog/2021-12-10-opennms-products-affected-by-apache-log4j-vulnerability-cve-2021-44228/
OpenNMS :https://talk.openmrs.org/t/urgent-security-advisory-2021-12-11-re-apache-log4j-2/35341
OpenMRS TALK :https://discuss.opendistrocommunity.dev/t/log4j-patch-for-cve-2021-44228/7950
OpenSearch :https://www.opentext.com/support/log4j-remote-code-execution-advisory
OpenText :opentripplanner/OpenTripPlanner#3785
OpenTripPlanner :https://forums.openvpn.net/viewtopic.php?f=4&p=103724#p103750
OpenVPN :https://forum.opnsense.org/index.php?topic=25951.msg125111#msg125111
OPNsense :https://www.oracle.com/security-alerts/alert-cve-2021-44228.html
Oracle :https://www.orgavision.com/neuigkeiten/sicherheitsluecke-java-library-log4j
Orgavision :https://www.osano.com/articles/apache-log4j-vulnerability-update
OSANO :https://twitter.com/osquery/status/1470831336118124549
OSQUERY :https://portal.otrs.com/external
OTRS :https://blog.ovhcloud.com/log4shell-how-to-protect-my-cloud-workloads/
OVHCloud :https://central.owncloud.org/t/owncloud-not-directly-affected-by-log4j-vulnerability/35493
OwnCloud :https://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXML :P
https://kb.palisade.com/index.php?pg=kb.printer.friendly&id=3#p1826
Palissade :https://security.paloaltonetworks.com/CVE-2021-44228
Palo-Alto Networks :https://pandorafms.com/blog/es/cve-2021-44228/
PandoraFMS :https://support.panopto.com/s/article/Panopto-Statement-on-the-Log4j2-Zero-Day-Vulnerability
Panopto :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996953
Pantheon hosting :https://www.papercut.com/kb/Main/Log4Shell-CVE-2021-44228
PaperCut :https://kb.parallels.com/en/128696
Parallels :https://blog.parse.ly/parse-ly-log4shell/
Parse.ly :https://www.passwordsafe.com/de/blog/log4j-zero-day-luecke/
PasswordSafe :https://www.reddit.com/r/passwordstate/comments/rf7d62/log4j_zeroday_log4shell_vulnerability/
PasswordState :https://help.pebblehost.com/en/article/patching-the-log4j-rce-exploit-14wyvz0/
Pebblehost :https://www.pdq.com/blog/log4j-vulnerability-cve-2021-44228/
PDQ :https://www.percona.com/blog/log4jshell-vulnerability-update/
Percona :https://www.perforce.com/support/log4j
Perforce :https://docs.pega.com/security-advisory/security-advisory-apache-log4j-zero-day-vulnerability
Pega :https://support.pentaho.com/hc/en-us/articles/4416229254541-log4j-2-zero-day-vulnerability-No-impact-to-supported-versions-of-Pentaho-
Pentaho :https://www.pexip.com/blog1.0/pexip-statement-on-log4j-vulnerability
Pexip :https://support.phenixid.se/uncategorized/log4j-fix/
Phenix Id :https://www.philips.com/a-w/security/security-advisories.html
Phillips :https://www.reddit.com/r/pihole/comments/re225u/does_pihole_use_log4j/
PiHole :https://support.pingidentity.com/s/article/Log4j2-vulnerability-CVE-CVE-2021-44228
PingIdentity :https://www.pitneybowes.com/us/support/apache-log4j-vulnerability.html
Pitney Bowes :https://www.planmeca.com/apache-log4j-vulnerability-in-planmeca-products/
Planmeca :https://my.planonsoftware.com/uk/news/log4j-impact-on-planon/
Planon Software :https://platform.sh/blog/2021/platformsh-protects-from-apache-log4j/
Platform.SH :https://support.plesk.com/hc/en-us/articles/4412182812818-CVE-2021-44228-vulnerability-in-log4j-package-of-Apache
Plesk :https://support.polycom.com/content/dam/polycom-support/global/documentation/plygn-21-08-poly-systems-apache.pdf
Polycom :https://www.portainer.io/blog/portainer-statement-re-log4j-cve-2021-44228
Portainer :https://github.com/katjahahn/PortEx/releases
PortEx :https://forum.portswigger.net/thread/are-burp-collaborator-or-burp-enterprise-vulnerable-to-log4j-dc6524e0
PortSwigger :https://www.postgresql.org/about/news/postgresql-jdbc-and-the-log4j-cve-2371/
PostGreSQL :https://support.postman.com/hc/en-us/articles/4415791933335-Is-Postman-impacted-by-the-Log4j-vulnerability-CVE-2021-44228-
Postman :https://www.poweradmin.com/blog/solarwinds-hack-our-safety-measures/
PowerAdmin :https://customer.precisely.com/s/article/CVE-2021-44228-Log4Shell?language=en_US
Precisely :https://pretix.eu/about/de/blog/20211213-log4j/
Pretix :https://support.primekey.com/news/posts/information-about-primekey-products-and-log4j-vulnerability-cve-2021-44228
PrimeKey :https://www.prodvx.com/blog/prodvx-statement-on-the-apache-log4j-security-flaw
ProDVX :https://www.progress.com/security
Progress / IpSwitch :https://proofpointcommunities.force.com/community/s/article/Proofpoint-Statement-Regarding-CVE-2021-44228-Java-logging-package-log4j2
ProofPoint :https://www.proses.de/en/2021/12/16/log4shell-cve-2021-44228/
ProSeS :https://prosysopc.com/news/important-security-release/
Prosys :https://twitter.com/ProtonMail/status/1470377648492797953
ProtonMail :https://forum.proxmox.com/threads/log4j-exploit-what-to-do.101254/#post-436880
Proxmox :https://kb.paessler.com/en/topic/90213-is-prtg-affected-by-cve-2021-44228
PRTG Paessler :https://www.ptc.com/en/documents/log4j
PTC :https://company.ptvgroup.com/en/resources/service-support/log4j-latest-information
PTV Group :https://kb.pulsesecure.net/articles/Pulse_Secure_Article/KB44933/?kA13Z000000L3dR
Pulse Secure :https://puppet.com/blog/puppet-response-to-remote-code-execution-vulnerability-cve-2021-44228/
Puppet :https://support.purestorage.com/Field_Bulletins/Interim_Security_Advisory_Regarding_CVE-2021-44228_(%22log4j%22)
Pure Storage :pwm-project/pwm#628
PWM Project :https://community.pyramidanalytics.com/t/83hjjt4/log4j-security-vulnerability-pyramid
Pyramid Analytics :Q
https://www.qfs.de/en/blog/article/no-log4j-vulnerability-in-qf-test.html
QF-Test :https://community.qlik.com/t5/Support-Updates-Blog/Vulnerability-Testing-Apache-Log4j-reference-CVE-2021-44228-also/ba-p/1869368
Qlik :https://www.qmatic.com/meet-qmatic/news/qmatic-statement-on-log4j-vulnerability
QMATIC :https://www.qnap.com/en-uk/security-advisory/qsa-21-58
QNAP :https://kbdeveloper.qoppa.com/cve-2021-44228-apache-log4j-vulnerability/
QOPPA :https://qscprod.force.com/selfhelpportal/s/article/Are-Q-SYS-products-affected-by-the-Log4j-vulnerability-CVE-2021-44228
QSC Q-SYS :https://www.qt.io/blog/the-qt-company-products-not-affected-by-cve-2021-44228-log4j-vulnerability
QT :https://support.quest.com/fr-fr/search#q=CVE-2021-44228&t=Global
Quest Global :R
https://r2ediviewer.de/DE/reload.html?Change-log_17858584.html
R2ediviewer :https://www.radfak.de/ankuendigungen-news/130-radfak-und-log4j-cve-2021-44228-sicherheitsluecke.html
Radfak :https://support.radware.com/app/answers/answer_view/a_id/1029752
Radware :https://www.rapid7.com/blog/post/2021/12/14/update-on-log4shells-impact-on-rapid7-solutions-and-systems/
Rapid7 :https://www.raritan.com/support
Raritan :https://syslog.ravelin.com/log4shell-cve-2021-44228-4338bb8da67b
Ravelin :https://www.red5pro.com/blog/red5-marked-safe-from-log4j-and-log4j2-zero-day/
Red5Pro :https://www.red-gate.com/privacy-and-security/vulnerabilities/2021-12-15-log4j-statement
RedGate :https://access.redhat.com/security/vulnerabilities/RHSB-2021-009
RedHat :https://redis.com/security/notice-apache-log4j2-cve-2021-44228/
Redis :https://forum.reiner-sct.com/index.php?/topic/5973-timecard-und-log4j-schwachstelle/&do=findComment&comment=14933
Reiner SCT :https://twitter.com/Remediant/status/1470278329454366720
Remediant :https://scotthelme.co.uk/responding-to-the-log4j-2-vulnerability/
ReportURI :https://support.respondus.com/support/index.php?/News/NewsItem/View/339
Respondus :https://community.flexera.com/t5/Revenera-Company-News/Security-Advisory-Log4j-Java-Vulnerability-CVE-2021-44228/ba-p/216905
Revenera / Flexera :https://www.ricoh.com/info/2021/1215_1/
Ricoh :https://www.ringcentral.com/trust-center/security-bulletin.html
RingCentral :https://supportkb.riverbed.com/support/index?page=content&id=S35645
Riverbed :RocketChat/Rocket.Chat#23927
RocketChat :https://community.rocketsoftware.com/forums/forum-home/digestviewer/viewthread?MessageKey=4f7520d4-ebdf-46be-ae93-60ec058d6baa&CommunityKey=dd45d00d-59db-4884-b3eb-2b0647af231b&tab=digestviewer&bm=4f7520d4-ebdf-46be-ae93-60ec058d6baa#bm4f7520d4-ebdf-46be-ae93-60ec058d6baa
Rocket Software :https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1133605
Rockwell Automation :https://rollbar.com/blog/log4j-zero-day-2021-log4shell/
Rollbar :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3993903
Rosetta UNOFICIAL :https://support.rosette.com/hc/en-us/articles/4416216525965-Log4j-Vulnerability
Rosette.com :https://www.lanner.com/fr-fr/insights/news/royal-haskoningdhv-digital-and-cve-2021-44228-apache-log4j2.html
Royal HaskoningDHV Digital :https://support.rubrik.com/s/announcementdetail?Id=a406f000001PwOcAAK
Rubrik :https://support.ruckuswireless.com/security_bulletins/313
Ruckus wireless :https://www.runecast.com/blog/runecast-6-0-1-0-covers-apache-log4j-java-vulnerability
Runecast :https://docs.rundeck.com/docs/history/CVEs/
RunDeck by PagerDuty :https://community.rsa.com/t5/general-security-advisories-and/rsa-customer-advisory-apache-vulnerability-log4j2-cve-2021-44228/ta-p/660501
RSA SecurID:https://community.rsa.com/t5/netwitness-platform-product/netwitness-apache-vulnerability-log4j2-cve-2021-44228-nbsp/ta-p/660540
RSA Netwitness :S
https://www.sae-it.com/nc/de/news/sicherheitsmeldungen.html
SAE-IT :https://community.safe.com/s/article/Is-FME-Server-Affected-by-the-Security-Vulnerability-Reported-Against-log4j
SAFE FME Server :https://www.sagecity.com/sage-global-solutions/sage-crm/f/sage-crm-announcements-news-and-alerts/178655/advisory-apache-log4j-vulnerability-cve-2021-44228
SAGE :https://community.sailpoint.com/t5/IdentityIQ-Blog/IdentityIQ-log4j-Remote-Code-Execution-Vulnerability/ba-p/206681
SailPoint :https://help.salesforce.com/s/articleView?id=000363736&type=1
Salesforce :https://help.sangoma.com/community/s/article/Log4Shell
Sangoma :https://launchpad.support.sap.com/#/notes/3130698
SAP Advanced Platform :https://launchpad.support.sap.com/#/notes/3129956
SAP BusinessObjects :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3994039
SAP Global coverage :https://support.sas.com/content/support/en/security-bulletins/remote-code-execution-vulnerability-cve-2021-44228.html
SAS :https://www.sassafras.com/log4j-vulnerability-cve-2021-44228/
SASSAFRAS :https://savignano.atlassian.net/wiki/spaces/SNOTIFY/blog/2021/12/13/2839740417/No+Log4j+Vulnerability+in+S+Notify
Savignano software solutions :https://community.scalecomputing.com/s/article/Apache-Log4j-Vulnerability
ScaleComputing :https://help.mobilock.in/article/t9sx43yg44-scalefusion-security-advisory-for-apache-log-4-j-vulnerability-cve-2021-44228
ScaleFusion MobileLock Pro :https://scalingo.com/blog/cve-2021-44228-log4shell
Scalingo :https://download.schneider-electric.com/files?p_Doc_Ref=SESB-2021-347-01
Schneider Electric :https://scm-manager.org/blog/posts/2021-12-13-log4shell/
SCM Manager :https://customersupport.screenbeam.com/hc/en-us/articles/4416468085389-December-2021-Security-Alert-Log4j-CVE-2021-44228
ScreenBeam :https://gateway.sdl.com/apex/communityknowledge?articleName=000017707
SDL worldServer :https://forum.seafile.com/t/urgent-zero-day-exploit-in-log4j/15575
Seafile :https://support.seagullscientific.com/hc/en-us/articles/4415794235543-Apache-Log4Shell-Vulnerability
Seagull Scientific :https://www.securepoint.de/news/details/sicherheitsluecke-log4j-securepoint-loesungen-nicht-betroffen.html
SecurePoint :https://blog.securityonion.net/2021/12/security-onion-2390-20211210-hotfix-now.html
Security Onion :https://servicedesk.seeburger.de/portal/en-US/Knowledge/Article/?defId=101040&id=25486312&COMMAND=Open
Seeburger :https://www.sentinelone.com/blog/cve-2021-44228-staying-secure-apache-log4j-vulnerability/
SentinelOne :https://blog.sentry.io/2021/12/15/sentrys-response-to-log4j-vulnerability-cve-2021-44228
Sentry :https://support.sep.de/otrs/public.pl?Action=PublicFAQZoom;ItemID=132
SEP :https://www.server-eye.de/blog/sicherheitsluecke-log4j-server-eye-systeme-sind-nicht-betroffen/
Server Eye :https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1000959
ServiceNow :https://twitter.com/sesam_info/status/1469711992122486791
Sesam Info :https://www.sfirm.de/nc/aktuelle-meldungen/aktuelles/article//update-141221-sfirm-440-von-java-sicherheitsluecke-log4j-nicht-betroffen.html
SFIRM :http://shibboleth.net/pipermail/announce/2021-December/000253.html
Shibboleth :https://community.shopify.com/c/technical-q-a/is-shopify-affected-by-the-log4j-vulnerability/td-p/1417625
Shopify :https://www.siebelhub.com/main/2021/12/log4j-vulnerability-cve-2021-44228-and-siebel-crm.html
Siebel :https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf
Siemens :https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2021-007/
Sierra Wireless :https://gitlab.com/signald/signald/-/issues/259
Signald :https://support.singlewire.com/s/article/Apache-Log4j2-vulnerability-CVE-2021-44228
SingleWire :https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1001391
Sitecore :https://twitter.com/SiteGround/status/1470334089500798976
SiteGround :https://skillable.com/log4shell/
Skillable :http://slf4j.org/log4shell.html
SLF4J :https://smartbear.com/security/cve-2021-44228/
SmartBear :https://www.smilecdr.com/our-blog/a-statement-on-log4shell-cve-2021-44228
SmileCDR :https://www.snom.com/en/press/log4j-poses-no-threat-snom-phones/
Sn0m :https://community.snowflake.com/s/article/No-Snowflake-exposure-to-Apache-Log4j-vulnerability-CVE-2021-44228
Snowflake :https://updates.snyk.io/snyk%27s-cloud-platform-all-clear-from-log4j-exploits-216499
Snyk :https://www.spigotmc.org/threads/spigot-security-releases-%E2%80%94-1-8-8%E2%80%931-18.537204/
Spigot :https://tech.forums.softwareag.com/t/log4j-zero-day-vulnerability/253849
Software AG :https://solace.community/discussion/1131/solace-issue-notification-sol-61111-cve-2021-44228-cve-2021-45046-apache-log4j-jndi-vulnerability
Solace :https://www.solarwinds.com/trust-center/security-advisories/cve-2021-44228
SolarWinds :https://community.sonarsource.com/t/sonarqube-and-the-log4j-vulnerability/54721
SonarSource :https://blog.sonatype.com/a-new-0-day-log4j-vulnerability-discovered-in-the-wild
Sonatype :https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032
SonicWall :https://www.sophos.com/en-us/security-advisories/sophos-sa-20211210-log4j-rce
Sophos :https://www.sos-berlin.com/en/news-mitigation-log4j-vulnerability
SOS Berlin :https://www.spacelabshealthcare.com/products/security/security-advisories-and-archives/log4shell-vulnerability-assessment-and-potential-product-impact-statement/
SpaceLabs Healthcare :https://www.spambrella.com/faq/status-of-spambrella-products-with-cve-2021-44228/
Spambrella :https://www.sprecher-automation.com/en/it-security/security-alerts
Sprecher Automation :https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/4412788262811-Is-Splashtop-affected-by-Apache-Log4j-
Splashtop :https://www.splunk.com/en_us/blog/bulletins/splunk-security-advisory-for-apache-log4j-cve-2021-44228.html
Splunk :https://spring.io/blog/2021/12/10/log4j2-vulnerability-and-spring-boot
Spring Boot :https://community.stardog.com/t/stardog-7-8-1-available/3411
StarDog :https://www.starwindsoftware.com/security/apache_log4j/
StarWind :https://www.ibm.com/support/pages/node/6525544
Sterling Order IBM :https://www.storagement.de/index.php?action=topicofthemonth&site=log4j
Storagement :https://www.stormshield.com/news/log4shell-security-alert-stormshield-product-response/
StormShield :https://blog.strangebee.com/apache-log4j-cve-2021-44228/
StrangeBee TheHive & Cortex :http://cdn.stratodesk.com/repository/notouch-center/10/4.5.231/0/ReleaseNotes-Stratodesk-NoTouch_Center-4.5.231.html
Stratodesk :https://strimzi.io/blog/2021/12/14/strimzi-and-log4shell/
Strimzi :https://support.stripe.com/questions/update-for-apache-log4j-vulnerability-(cve-2021-44228)
Stripe :https://blog.styra.com/blog/newest-log4j-security-vulnerability-cve-2021-44228-log4shell
Styra :https://help.sumologic.com/Release-Notes/Collector-Release-Notes#december-11-2021-19-361-12
SumoLogic :https://manuals.supernaeyeglass.com/project-technical-advisories-all-products/HTML/technical-advisories.html#h2__1912345025
Superna EYEGLASS :https://www.supremainc.com/en/
Suprema Inc :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3998301
Surepoint :https://www.suse.com/c/suse-statement-on-log4j-log4shell-cve-2021-44228-vulnerability/
SUSE :https://sweepwidget.com/view/23032-v9f40ns1/4zow83-23032
Sweepwidget :https://github.com/bpangburn/swingset/blob/017452b2d0d8370871f43a68043dacf53af7f759/swingset/CHANGELOG.txt#L10
Swingset :https://www.swisslog.com/en-us/about-swisslog/newsroom/news-press-releases-blog-posts/2021/12/apache-cyber-attack
Swisslog :https://service.swyx.net/hc/de/articles/4412323539474
Swyx :https://blog.syncplify.com/no-we-are-not-affected-by-log4j-vulnerability/
Syncplify :https://community.syncromsp.com/t/log4j-rce-cve-2021-4428/1350
Synchro MSP :https://www.synology.com/en-global/security/advisory/Synology_SA_21_30
Synology :https://community.synopsys.com/s/article/SIG-Security-Advisory-for-Apache-Log4J2-CVE-2021-44228
Synopsys :https://www.syntevo.com/blog/?p=5240
Syntevo :https://www.sysaid.com/lp/important-update-regarding-apache-log4j
SysAid :https://sysdig.com/blog/cve-critical-vulnerability-log4j/
Sysdig :T
https://kb.tableau.com/articles/issue/Apache-Log4j2-vulnerability-Log4shell
Tableau server (Now a Salesforce company!):https://jira.talendforge.org/browse/TCOMP-2054
Talend :https://community.tanium.com/s/article/How-Tanium-Can-Help-with-CVE-2021-44228-Log4Shell#_Toc90296319
Tanium :https://github.com/NCSC-NL/log4shell/blob/main/software/vendor-statements/Targit.png
Targit :https://docs.tasktop.com/home/cve-2021-44228-apache-log4j-vulnerability-in-tasktop-products
Tasktop :https://community.tealiumiq.com/t5/Announcements-Blog/Update-on-Log4j-Security-Vulnerability/ba-p/36824
TealiumIQ :https://teampasswordmanager.com/blog/log4j-vulnerability/
TeamPasswordManager :https://www.teamviewer.com/en/trust-center/security-bulletins/hotfix-log4j2-issue/
Teamviewer :https://support.techsmith.com/hc/en-us/articles/4416620527885?input_string=log4j
TechSmith :https://www.tenable.com/log4j
Tenable :http://www.telestream.net/telestream-support/Apache-Log4j2-Bulletin.htm
Telestream :https://terra.bio/terras-security-response-to-the-log4j-vulnerability/
Terra :https://support.testout.com/hc/en-us/articles/4413081889947-Is-TestOut-LabSim-Impacted-by-the-Apache-Log4j-vulnerability-CVE-2021-44228-
TestOut :https://supportportal.thalesgroup.com/csm?id=kb_article_view&sys_kb_id=02863d13db544110f0e3220805961914&sysparm_article=KB0025287
Thales :https://supportportal.thalesgroup.com/csm?id=kb_article_protected&sys_id=12acaed3dbd841105d310573f3961953
Thales (SafeNet) HSM :https://pages.theaccessgroup.com/Response-Log4J-Dec21.html
The Access Group :https://therefore.net/log4j-therefore-unaffected/
Therefore :https://threatlocker.kb.help/log4j-vulnerability/
ThreatLocker :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3993316
Threema UNOFICIAL :https://docs.thycotic.com/bulletins/current/2021/cve-2021-44228-exploit.md
ThycoticCentrify :https://www.tibco.com/support/notices/2021/12/apache-log4j-vulnerability-update
Tibco :https://my.topdesk.com/tas/public/ssp/content/detail/knowledgeitem?unid=74952771dfab4b0794292e63b0409314
TopDesk :https://www.topgun-tech.com/technical-bulletin-apache-software-log4j-security-vulnerability-cve-2021-44228/
Top Gun Technology (TGT) :https://blog.topicus-keyhub.com/topicus-keyhub-is-not-vulnerable-to-cve-2021-44228/
Topicus KeyHub :https://www.topix.de/de/technik/systemfreigaben.html
Topix :https://helpdesk.tosibox.com/support/solutions/articles/2100050946-security-advisory-on-vulnerability-in-apache-log4j-library-cve-2021-44228
Tosibox :https://www.tp-link.com/jp/support/faq/3255/
TP-Link :https://success.trendmicro.com/solution/000289940
TrendMicro :https://support-hub.tricentis.com/open?number=NEW0001148&id=post
Tricentis Tosca :https://www.tripwire.com/log4j
Tripwire :https://www.truenas.com/community/threads/log4j-vulnerability.97359/post-672559
TrueNAS :https://portal.tufin.com/articles/SecurityAdvisories/Apache-Log4Shell-Vulnerability-12-12-2021
Tufin :https://typo3.org/article/typo3-psa-2021-004
TYPO3 :U
https://community.ui.com/releases/UniFi-Network-Application-6-5-55/48c64137-4a4a-41f7-b7e4-3bee505ae16e
Ubiquiti-UniFi-UI :https://ubuntu.com/security/CVE-2021-44228
Ubuntu :https://umbraco.com/blog/security-advisory-december-15-2021-umbraco-cms-and-cloud-not-affected-by-cve-2021-44228-log4j-rce-0-day-mitigation/
Umbraco :https://networks.unify.com/security/advisories/OBSO-2112-01.pdf
Unify ATOS :https://www.uniflow.global/en/security/security-and-maintenance/
UniFlow :https://forum.unimus.net/viewtopic.php?f=7&t=1390#top
Unimus :https://ussignal.com/blog/apache-log4j-vulnerability
USSIGNAL MSP :V
https://support.varmour.com/hc/en-us/articles/4416396248717-Log4j2-Emergency-Configuration-Change-for-Critical-Auth-Free-Code-Execution-in-Logging-Utility
VArmour :https://help.varonis.com/s/article/Apache-Log4j-Zero-Day-Vulnerability-CVE-2021-44228
Varonis :https://docs.varnish-software.com/security/CVE-2021-44228-45046/
Varnish Software :https://www.veeam.com/kb4254
Veeam :https://www.vector.com/cl/en/support-downloads/security-advisories/log4j/#c248921
Vector :https://www.videolan.org/news.html#news-2021-12-15
VLC :https://support.venafi.com/hc/en-us/articles/4416213022733-Log4j-Zero-Day-Vulnerability-notice
Venafi :https://www.vendavo.com/all/latest-vendavo-response-to-log4shell-vulnerability/
Vendavo :https://www.veritas.com/content/support/en_US/article.100052070
Veritas NetBackup :https://forum.vertica.com/discussion/242512/vertica-security-bulletin-a-potential-vulnerability-has-been-identified-apache-log4j-library-used
Vertica :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3996968
Vertiv :https://vertx.io/blog/CVE-2021-44228/
VertX :https://github.com/vespa-engine/blog/blob/f281ce4399ed3e97b4fed32fcc36f9ba4b17b1e2/_posts/2021-12-10-log4j-vulnerability.md
Vespa ENGINE :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3997784
Vigilant Software (CyberComply :https://labs.vipre.com/security-advisory-vipres-analysis-of-critical-log4j-vulnerability/
VIPRE :https://blog.visotrust.com/viso-trust-statement-re-cve-2021-44228-log4j-a4b9b5767492
Viso Trust :https://www.visualsvn.com/company/news/visualsvn-products-are-not-affected-by-CVE-2021-44228
VisualSVN :https://www.vmware.com/security/advisories/VMSA-2021-0028.html
VMware :https://www.vtscada.com/vtscada-unaffected-by-log4j/
VTScada :W
https://lab.wallarm.com/cve-2021-44228-mitigation-update/
Wallarm :https://www.reddit.com/r/WAPT/comments/rg38o9/wapt_is_not_affected_by_the_cve202144228_flaw/
WAPT :https://support.waspbarcode.com/kb/articles/assetcloud-inventorycloud-are-they-affected-by-the-java-exploit-log4j-no
Wasp Barcode technologies :https://twitter.com/felix_hrn/status/1470387338001977344
Watcher :https://www.secplicity.org/2021/12/10/critical-rce-vulnerability-in-log4js/
WatchGuard / Secplicity /https://www.westerndigital.com/support/product-security/wdc-21016-apache-log4j-2-remote-code-execution-vulnerability-analysis
Western Digital :https://twitter.com/WildFlyAS/status/1469362190536818688
WildFlyAS :https://support2.windriver.com/index.php?page=security-notices&on=view&id=7191
WindRiver :https://gitlab.com/wireshark/wireshark/-/issues/17783
WireShark :https://status.wistia.com/incidents/jtg0dfl5l224
Wistia :https://www.witfoo.com/blog/emergency-update-for-cve-2021-44228-log4j/
WitFoo :https://twitter.com/wodbycloud/status/1470125735914450950
Wodby Cloud :https://twitter.com/voicethread/status/1470498119540514821
VoiceThread :https://wordpress.org/support/topic/is-the-log4j-vulnerability-an-issue/
WordPress :https://blog.workday.com/en-us/2021/workday-response-on-log4j.html
Workday :https://www.worksphere.com/product/security-update-on-log4j-cve-2021-44228
Worksphere :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995649
World Programming WPS analytics :https://www.wowza.com/docs/known-issues-with-wowza-streaming-engine#log4j2-cve
Wowza :wso2/security-tools#169
WSO2 :X
https://xcp-ng.org/forum/topic/5315/log4j-vulnerability-impact
XCP-ng :https://xenforo.com/community/threads/psa-potential-security-vulnerability-in-elasticsearch-5-via-apache-log4j-log4shell.201145/
XenForo :https://security.business.xerox.com/wp-content/uploads/2021/12/Xerox-Special-Bulletin-Regarding-CVE-2021-44228.pdf
Xerox :https://support.xilinx.com/s/article/76957?language=en_US
Xilinx :https://support.xmind.net/hc/en-us/community/posts/4412509904537
Xmind :https://kb.xpertdoc.com/pages/viewpage.action?pageId=87622727
XPertDoc :https://www.xplg.com/log4j-vulnerability-exploit-log4shell-xplg-secure/
XPLG :jenkinsci/xray-connector-plugin#53
Xray connector plugin :https://forum.xwiki.org/t/log4j-cve-2021-44228-log4shell-zero-day-vulnerability/9557
XWIKI :Y
https://github.com/yandex-cloud/docs/blob/6ff6c676787756e7dd6101c53b051e4cd04b3e85/ru/overview/security-bulletins/index.md#10122021--cve-2021-44228--%D1%83%D0%B4%D0%B0%D0%BB%D0%B5%D0%BD%D0%BD%D0%BE%D0%B5-%D0%B2%D1%8B%D0%BF%D0%BE%D0%BB%D0%BD%D0%B5%D0%BD%D0%B8%D0%B5-%D0%BA%D0%BE%D0%B4%D0%B0-log4shell-apache-log4j
Yandex-Cloud :https://support.yellowbrick.com/hc/en-us/articles/4412586575379-Security-Advisory-Yellowbrick-is-NOT-Affected-by-the-Log4Shell-Vulnerability
Yellowbrick :https://community.yellowfinbi.com/announcement/notice-critical-vulnerability-in-log4j2
YellowFin :https://www.ysoft.com/getattachment/Products/Security/Standards-Compliance/text/Information-Security-Policy-Statement/YSOFT-SAFEQ-LOG4J-VULNERABILITY-PRODUCT-UPDATE-WORKAROUND-1.pdf
YSoft SAFEQ :Z
https://blog.zabbix.com/zabbix-not-affected-by-the-log4j-exploit/17873/
Zabbix :https://community.zammad.org/t/cve-2021-44228-elasticsearch-users-be-aware/8256
ZAMMAD :https://www.zaproxy.org/blog/2021-12-10-zap-and-log4shell/
Zaproxy :https://www.zebra.com/us/en/support-downloads/lifeguard-security/cve-2021-442280-dubbed-log4shell-or-logjam-vulnerability.html
Zebra :https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592#gistcomment-3995461
Zellis :https://support.zendesk.com/hc/en-us/articles/4413583476122
Zendesk :https://support.zenoss.com/hc/en-us
Zenoss :https://help.zerto.com/kb/000004822
Zerto :https://www.zesty.io/mindshare/company-announcements/log4j-exploit/
Zesty :https://bugzilla.zimbra.com/show_bug.cgi?id=109428
Zimbra :https://support.zpesystems.com/portal/en/kb/articles/is-nodegrid-os-and-zpe-cloud-affected-by-cve-2021-44228-apache-log4j
ZPE systems Inc :https://community.zoom.com/t5/Community-Help-Center/Zoom-security-exposure/m-p/28109/highlight/true#M2059
Zoom :https://engineering.zoominfo.com/zoominfo-update-on-apache-log4j-vulnerability
ZoomInfo :zowe/community#1381
Zowe :https://www.zscaler.fr/blogs/security-research/security-advisory-log4j-0-day-remote-code-execution-vulnerability-cve-2021
ZSCALER :https://www.zyxel.com/support/Zyxel_security_advisory_for_Apache_Log4j_RCE_vulnerability.shtml
Zyxel :Errors, typos, something to say ?
- If you want to add a link, comment or send it to me
- Feel free to report any mistake directly below in the comment or in DM on Twitter @SwitHak
Johnson Controls - https://www.johnsoncontrols.com/-/media/jci/cyber-solutions/product-security-advisories/2021/jci-psa-2021-23-v3.pdf?la=en&hash=1FC58B65D948E106055CA63184EFBCAB5C7DD9A1