Update the software list

2 years ago · 4798bc9514
parent 563d5cf4ee
commit 4798bc9514
3 changed files with 69 additions and 55 deletions
--- a/SOFTWARE-LIST.md
+++ b/SOFTWARE-LIST.md
@ -3368,25 +3368,25 @@ NOTE: This file is automatically generated. To submit updates, please refer to
 | Xerox | XMPie Data-Driven Print and VDP |  |  | Not Affected | [link](https://securitydocs.business.xerox.com/wp-content/uploads/2022/01/Xerox-Special-Bulletin-Regarding-CVE-2021-44228-CVE-2021-45046-and-CVE-2021-45105-v1.7.pdf?_ga=2.84055769.1559902237.1644009323-1916165539.1644009323) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Xerox | XMPie Omnichannel Communications |  |  | Not Affected | [link](https://securitydocs.business.xerox.com/wp-content/uploads/2022/01/Xerox-Special-Bulletin-Regarding-CVE-2021-44228-CVE-2021-45046-and-CVE-2021-45105-v1.7.pdf?_ga=2.84055769.1559902237.1644009323-1916165539.1644009323) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Xerox | XMPie Web to Print |  |  | Not Affected | [link](https://securitydocs.business.xerox.com/wp-content/uploads/2022/01/Xerox-Special-Bulletin-Regarding-CVE-2021-44228-CVE-2021-45046-and-CVE-2021-45105-v1.7.pdf?_ga=2.84055769.1559902237.1644009323-1916165539.1644009323) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
-| XPertDoc |  |  |  | Unknown | [link](https://kb.xpertdoc.com/pages/viewpage.action?pageId=87622727) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| XPertDoc | All |  |  | Unknown | [link](https://kb.xpertdoc.com/pages/viewpage.action?pageId=87622727) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
-| XPLG |  |  |  | Unknown | [link](https://www.xplg.com/log4j-vulnerability-exploit-log4shell-xplg-secure/) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| XPLG | All |  |  | Unknown | [link](https://www.xplg.com/log4j-vulnerability-exploit-log4shell-xplg-secure/) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
-| XWIKI |  |  |  | Unknown | [link](https://forum.xwiki.org/t/log4j-cve-2021-44228-log4shell-zero-day-vulnerability/9557) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| XWIKI | All |  |  | Unknown | [link](https://forum.xwiki.org/t/log4j-cve-2021-44228-log4shell-zero-day-vulnerability/9557) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
-| Xylem | Aquatalk |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Aquatalk |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Avensor |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Avensor |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Configuration change complete |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Configuration change complete |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus Analytics |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus Analytics |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus Automation Control Configuration change complete |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus Automation Control Configuration change complete |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus Cathodic Protection Mitigation in process Mitigation in process |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus Cathodic Protection Mitigation in process Mitigation in process |  |  | Affected | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus FieldLogic LogServer |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus FieldLogic LogServer |  |  | Affected | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus Lighting Control |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus Lighting Control |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus NetMetrics Configuration change complete |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus NetMetrics Configuration change complete |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
 | Xylem | Sensus RNI On Prem | 4.7 through 4.10, 4.4 through 4.6, 4.2 |  | Affected | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus RNI Saas | 4.7 through 4.10, 4.4 through 4.6, 4.2 |  | Affected | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus RNI Saas |  | 4.7 through 4.10, 4.4 through 4.6, 4.2 | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Sensus SCS |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Sensus SCS |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Smart Irrigation |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Smart Irrigation |  |  | Affected | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Water Loss Management (Visenti) |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Water Loss Management (Visenti) |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Xylem Cloud |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Xylem Cloud |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
-| Xylem | Xylem Edge Gateway (xGW) |  |  | Unknown | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
+| Xylem | Xylem Edge Gateway (xGW) |  |  | Fixed | [link](https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-apache-log4j-xpsa-2021-005.pdf) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-22 |
 | Yahoo | Vespa |  |  | Not Affected | [link](https://blog.vespa.ai/log4j-vulnerability/) | Your Vespa application may still be affected if log4j is included in your application package. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Yellowbrick |  |  |  | Unknown | [link](https://support.yellowbrick.com/hc/en-us/articles/4412586575379-Security-Advisory-Yellowbrick-is-NOT-Affected-by-the-Log4Shell-Vulnerability) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | YellowFin | All |  | 8.0.10.3, 9.7.0.2 | Fixed | [link](https://community.yellowfinbi.com/announcement/notice-critical-vulnerability-in-log4j2) | v7 and v6 releases are not affected unless you have manually upgraded to Log4j2. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
--- a/data/cisagov.yml
+++ b/data/cisagov.yml
@ -99745,7 +99745,7 @@ software:
      - ''
    last_updated: '2022-01-12T07:18:50+00:00'
  - vendor: XPertDoc
-    product: ''
+    product: All
    cves:
      cve-2021-4104:
        investigated: false
@ -99774,7 +99774,7 @@ software:
      - ''
    last_updated: '2022-01-12T07:18:50+00:00'
  - vendor: XPLG
-    product: ''
+    product: All
    cves:
      cve-2021-4104:
        investigated: false
@ -99803,7 +99803,7 @@ software:
      - ''
    last_updated: '2022-01-12T07:18:50+00:00'
  - vendor: XWIKI
-    product: ''
+    product: All
    cves:
      cve-2021-4104:
        investigated: false
@ -99840,9 +99840,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -99869,9 +99870,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -99898,9 +99900,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -99927,9 +99930,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -99956,9 +99960,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -99985,8 +99990,9 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
-        affected_versions: []
+        affected_versions:
          - ''
        fixed_versions: []
        unaffected_versions: []
      cve-2021-45046:
@ -100014,8 +100020,9 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
-        affected_versions: []
+        affected_versions:
          - ''
        fixed_versions: []
        unaffected_versions: []
      cve-2021-45046:
@ -100043,9 +100050,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -100072,9 +100080,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -100134,11 +100143,11 @@ software:
        unaffected_versions: []
      cve-2021-44228:
        investigated: true
-        affected_versions:
+        affected_versions: []
        fixed_versions:
          - 4.7 through 4.10
          - 4.4 through 4.6
          - '4.2'
        fixed_versions: []
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -100165,9 +100174,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -100194,8 +100204,9 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
-        affected_versions: []
+        affected_versions:
          - ''
        fixed_versions: []
        unaffected_versions: []
      cve-2021-45046:
@ -100223,9 +100234,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -100252,9 +100264,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
@ -100281,9 +100294,10 @@ software:
        fixed_versions: []
        unaffected_versions: []
      cve-2021-44228:
-        investigated: false
+        investigated: true
        affected_versions: []
-        fixed_versions: []
+        fixed_versions:
          - ''
        unaffected_versions: []
      cve-2021-45046:
        investigated: false
--- a/data/cisagov_X.yml
+++ b/data/cisagov_X.yml
@ -3701,8 +3701,8 @@ software:
      cve-2021-44228:
        investigated: true
        affected_versions:
-          - '4.7 through 4.10'
+          - 4.7 through 4.10
-          - '4.4 through 4.6'
+          - 4.4 through 4.6
          - '4.2'
        fixed_versions: []
        unaffected_versions: []
@ -3734,8 +3734,8 @@ software:
        investigated: true
        affected_versions: []
        fixed_versions:
-          - '4.7 through 4.10'
+          - 4.7 through 4.10
-          - '4.4 through 4.6'
+          - 4.4 through 4.6
          - '4.2'
        unaffected_versions: []
      cve-2021-45046: