From 4ae07fd16f0fc9e8f53cfac54dc5793d37f79bf9 Mon Sep 17 00:00:00 2001
From: Paul Schrauder <pschrauder@deloitte.com>
Date: Wed, 26 Jan 2022 17:12:58 -0600
Subject: [PATCH] Updated for dataloader

---
 data/cisagov_S.yml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/data/cisagov_S.yml b/data/cisagov_S.yml
index 7c7de43..100cb89 100644
--- a/data/cisagov_S.yml
+++ b/data/cisagov_S.yml
@@ -313,8 +313,10 @@ software:
         fixed_versions: []
         unaffected_versions: []
     vendor_links:
-      - https://github.com/forcedotcom/dataloader/releases/tag/v53.0.1
-    notes: ''
+      - https://github.com/forcedotcom/dataloader/releases/tag/v53.0.2
+    notes: This version is for use with Salesforce Winter '22 or higher release through Salesforce 
+      Force Partner API and Force WSC v53.0.0. It contains the fix for CVE-2021-44228, CVE-2021-45046, 
+      and CVE-2021-45105 by upgrading to log4j 2.17.0.
     references:
       - ''
     last_updated: '2022-01-26T00:00:00'