Merge branch 'develop' into develop

SOFTWARE-LIST.md

@@ -12,10 +12,11 @@
 
 ## Software List ##
 
-This list was initially populated using information from the following sources:
+This list has been populated using information from the following sources:
 
 - Kevin Beaumont
 - SwitHak
+- NCSC-NL
 
 NOTE: This file is automatically generated. To submit updates, please refer to
 [`CONTRIBUTING.md`](CONTRIBUTING.md).
@@ -3003,15 +3004,27 @@ NOTE: This file is automatically generated. To submit updates, please refer to
 | ZAMMAD |  |  |  | Unknown | [link](https://community.zammad.org/t/cve-2021-44228-elasticsearch-users-be-aware/8256) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Zaproxy |  |  |  | Unknown | [link](https://www.zaproxy.org/blog/2021-12-10-zap-and-log4shell/) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Zebra |  |  |  | Unknown | [link](https://www.zebra.com/us/en/support-downloads/lifeguard-security/cve-2021-442280-dubbed-log4shell-or-logjam-vulnerability.html) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| Zeiss | Cataract Suite |  | 1.3.1 | Fixed | [link](https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html) | Patch is available. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zeiss | EQ Workplace |  | 1.6, 1.8 | Fixed | [link](https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html) | Patch is available. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zeiss | FORUM |  | 4.2.x | Fixed | [link](https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html) | Patch is available. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zeiss | Glaucoma Workplace |  | 3.5.x | Fixed | [link](https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html) | Patch is available. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zeiss | Laser Treatment Workplace |  | 1.x | Fixed | [link](https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html) | Patch is available. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zeiss | Retina Workplace |  | 2.5.x, 2.6.x | Fixed | [link](https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html) | Patch is available. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
 | Zendesk | All Products | All Versions |  | Affected | [link](https://support.zendesk.com/hc/en-us/articles/4413583476122) | Zendesk products are all cloud-based; thus there are no updates for the customers to install as the company is working on patching their infrastructure and systems. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-13 |
 | Zenoss |  |  |  | Unknown | [link](https://support.zenoss.com/hc/en-us) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Zentera Systems, Inc. | CoIP Access Platform |  |  | Not Affected | [link](https://support.zentera.net/hc/en-us/articles/4416227743511--CVE-2021-44228-Log4Shell-Vulnerability-in-Apache-Log4j) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-17 |
-| Zerto |  |  |  | Unknown | [link](https://help.zerto.com/kb/000004822) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| Zerto | Cloud Appliance |  |  | Not Affected | [link](https://help.zerto.com/kb/000004822) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zerto | Cloud Manager |  |  | Not Affected | [link](https://help.zerto.com/kb/000004822) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zerto | Virtual Manager |  |  | Not Affected | [link](https://help.zerto.com/kb/000004822) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zerto | Virtual Replication Appliance |  |  | Not Affected | [link](https://help.zerto.com/kb/000004822) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
 | Zesty |  |  |  | Unknown | [link](https://www.zesty.io/mindshare/company-announcements/log4j-exploit/) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Zimbra |  |  |  | Unknown | [link](https://bugzilla.zimbra.com/show_bug.cgi?id=109428) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Zix |  |  |  | Unknown | [link](https://status.appriver.com/) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-16 |
-| Zoom |  |  |  | Unknown | [link](https://explore.zoom.us/en/trust/security/security-bulletin/security-bulletin-log4j/?=nocache) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| Zoho | Online |  |  | Unknown | [link](https://help.zoho.com/portal/en/community/topic/update-on-the-recent-apache-log4j-vulnerability) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-02-01 |
+| Zoom |  |  |  | Not Affected | [link](https://explore.zoom.us/en/trust/security/security-bulletin/security-bulletin-log4j/?=nocache) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | ZPE systems Inc |  |  |  | Unknown | [link](https://support.zpesystems.com/portal/en/kb/articles/is-nodegrid-os-and-zpe-cloud-affected-by-cve-2021-44228-apache-log4j) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
 | Zscaler | See Link (Multiple Products) |  |  | Unknown | [link](https://trust.zscaler.com/posts/9581) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-15 |
 | Zyxel |  |  |  | Unknown | [link](https://www.zyxel.com/support/Zyxel_security_advisory_for_Apache_Log4j_RCE_vulnerability.shtml) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2022-01-12 |
+| Zyxel | All other products |  |  | Not Affected | [link](https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-14 |
+| Zyxel | Netlas Element Management System (EMS) |  |  | Affected | [link](https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability) | Hotfix availibility Dec. 20 2021. Patch availability in end of Feb. 2022. |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-14 |
 | Zyxel | Security Firewall/Gateways |  |  | Not Affected | [link](https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability) |  |  | [cisagov](https://github.com/cisagov/log4j-affected-db) | 2021-12-14 |

config/SOFTWARE-LIST.tpl.md

@@ -12,10 +12,11 @@
 
 ## Software List ##
 
-This list was initially populated using information from the following sources:
+This list has been populated using information from the following sources:
 
 - Kevin Beaumont
 - SwitHak
+- NCSC-NL
 
 NOTE: This file is automatically generated. To submit updates, please refer to
 [`CONTRIBUTING.md`](CONTRIBUTING.md).

data/cisagov.yml

@@ -88339,6 +88339,192 @@ software:
     references:
       - ''
     last_updated: '2022-01-12T07:18:50+00:00'
+  - vendor: Zeiss
+    product: Cataract Suite
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 1.3.1
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: EQ Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 1.6, 1.8
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: FORUM
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 4.2.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: Glaucoma Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 3.5.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: Laser Treatment Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 1.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: Retina Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 2.5.x, 2.6.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
   - vendor: Zendesk
     product: All Products
     cves:
@@ -88431,34 +88617,137 @@ software:
       - ''
     last_updated: '2021-12-17T00:00:00'
   - vendor: Zerto
-    product: ''
+    product: Cloud Appliance
     cves:
       cve-2021-4104:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-44228:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45046:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45105:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
     vendor_links:
       - https://help.zerto.com/kb/000004822
     notes: ''
     references:
       - ''
-    last_updated: '2022-01-12T07:18:50+00:00'
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zerto
+    product: Cloud Manager
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zerto.com/kb/000004822
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zerto
+    product: Virtual Manager
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zerto.com/kb/000004822
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zerto
+    product: Virtual Replication Appliance
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zerto.com/kb/000004822
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
   - vendor: Zesty
     product: ''
     cves:
@@ -88546,29 +88835,66 @@ software:
     references:
       - ''
     last_updated: '2021-12-16T00:00:00'
-  - vendor: Zoom
+  - vendor: Zoho
-    product: ''
+    product: Online
     cves:
       cve-2021-4104:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-44228:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45046:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45105:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zoho.com/portal/en/community/topic/update-on-the-recent-apache-log4j-vulnerability
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zoom
+    product: ''
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
     vendor_links:
       - https://explore.zoom.us/en/trust/security/security-bulletin/security-bulletin-log4j/?=nocache
     notes: ''
@@ -88662,14 +88988,81 @@ software:
     references:
       - ''
     last_updated: '2022-01-12T07:18:50+00:00'
+  - vendor: Zyxel
+    product: All other products
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-12-14T00:00:00'
+  - vendor: Zyxel
+    product: Netlas Element Management System (EMS)
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions:
+          - ''
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability
+    notes: Hotfix availibility Dec. 20 2021. Patch availability in end of Feb. 2022.
+    references:
+      - ''
+    last_updated: '2021-12-14T00:00:00'
   - vendor: Zyxel
     product: Security Firewall/Gateways
     cves:
       cve-2021-4104:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-44228:
         investigated: true
         affected_versions: []
@@ -88678,15 +89071,17 @@ software:
           - ZLD Firmware Security Services
           - Nebula
       cve-2021-45046:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45105:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
     vendor_links:
       - https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability
     notes: ''

data/cisagov_Z.yml

@@ -120,6 +120,192 @@ software:
     references:
       - ''
     last_updated: '2022-01-12T07:18:50+00:00'
+  - vendor: Zeiss
+    product: Cataract Suite
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 1.3.1
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: EQ Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 1.6, 1.8
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: FORUM
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 4.2.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: Glaucoma Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 3.5.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: Laser Treatment Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 1.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zeiss
+    product: Retina Workplace
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions:
+          - 2.5.x, 2.6.x
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45105:
+        investigated: false
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions: []
+    vendor_links:
+      - https://www.zeiss.com/meditec/int/cybersecurity/apache-log4j/english.html
+    notes: Patch is available.
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
   - vendor: Zendesk
     product: All Products
     cves:
@@ -212,34 +398,137 @@ software:
       - ''
     last_updated: '2021-12-17T00:00:00'
   - vendor: Zerto
-    product: ''
+    product: Cloud Appliance
     cves:
       cve-2021-4104:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-44228:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45046:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45105:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
     vendor_links:
       - https://help.zerto.com/kb/000004822
     notes: ''
     references:
       - ''
-    last_updated: '2022-01-12T07:18:50+00:00'
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zerto
+    product: Cloud Manager
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zerto.com/kb/000004822
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zerto
+    product: Virtual Manager
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zerto.com/kb/000004822
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zerto
+    product: Virtual Replication Appliance
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zerto.com/kb/000004822
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
   - vendor: Zesty
     product: ''
     cves:
@@ -327,29 +616,66 @@ software:
     references:
       - ''
     last_updated: '2021-12-16T00:00:00'
-  - vendor: Zoom
+  - vendor: Zoho
-    product: ''
+    product: Online
     cves:
       cve-2021-4104:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-44228:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45046:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45105:
         investigated: false
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://help.zoho.com/portal/en/community/topic/update-on-the-recent-apache-log4j-vulnerability
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-02-01T00:00:00'
+  - vendor: Zoom
+    product: ''
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
     vendor_links:
       - https://explore.zoom.us/en/trust/security/security-bulletin/security-bulletin-log4j/?=nocache
     notes: ''
@@ -443,14 +769,81 @@ software:
     references:
       - ''
     last_updated: '2022-01-12T07:18:50+00:00'
+  - vendor: Zyxel
+    product: All other products
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability
+    notes: ''
+    references:
+      - ''
+    last_updated: '2021-12-14T00:00:00'
+  - vendor: Zyxel
+    product: Netlas Element Management System (EMS)
+    cves:
+      cve-2021-4104:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-44228:
+        investigated: true
+        affected_versions:
+          - ''
+        fixed_versions: []
+        unaffected_versions: []
+      cve-2021-45046:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+      cve-2021-45105:
+        investigated: true
+        affected_versions: []
+        fixed_versions: []
+        unaffected_versions:
+          - ''
+    vendor_links:
+      - https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability
+    notes: Hotfix availibility Dec. 20 2021. Patch availability in end of Feb. 2022.
+    references:
+      - ''
+    last_updated: '2021-12-14T00:00:00'
   - vendor: Zyxel
     product: Security Firewall/Gateways
     cves:
       cve-2021-4104:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-44228:
         investigated: true
         affected_versions: []
@@ -459,15 +852,17 @@ software:
           - ZLD Firmware Security Services
           - Nebula
       cve-2021-45046:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
       cve-2021-45105:
-        investigated: false
+        investigated: true
         affected_versions: []
         fixed_versions: []
-        unaffected_versions: []
+        unaffected_versions:
+          - ''
     vendor_links:
       - https://community.zyxel.com/en/discussion/12229/zyxel-security-advisory-for-apache-log4j-rce-vulnerability
     notes: ''