You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

3.6 KiB

CISA Log4j (CVE-2021-44228) Affected Vendor & Software List

0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Status Descriptions

Status Description
Unknown Status unknown. Default choice.
Affected Reported to be affected by CVE-2021-44228.
Not Affected Reported to NOT be affected by CVE-2021-44228 and no further action necessary.
Fixed Patch and/or mitigations available (see provided links).
Under Investigation Vendor investigating status.

Software List

This list has been populated using information from the following sources:

  • Kevin Beaumont
  • SwitHak
  • National Cyber Security Centre - Netherlands (NCSC-NL)

NOTE: This file is automatically generated. To submit updates, please refer to

Vendor Product Affected Versions Patched Versions Status Vendor Links Notes References Reporter Last Updated
Ubiquiti UniFi Network Application 6.5.53 & lower versions Affected link cisagov 2022-01-12
Ubiquiti UniFi Network Controller 6.5.54 & lower versions Affected link 6.5.54 is reported to still be vulnerable. 6.5.55 is the new recommendation for mitigatin log4j vulnerabilities by updating to log4j 2.16.0 cisagov 2021-12-15
Ubuntu Unknown link cisagov 2022-01-12
UiPath InSights 20.10 Affected link cisagov 2021-12-15
Umbraco Unknown link cisagov 2022-01-12
UniFlow Unknown link cisagov 2022-01-12
Unify ATOS Unknown link cisagov 2022-01-12
Unimus Unknown link cisagov 2022-01-12
USSIGNAL MSP Unknown link cisagov 2022-01-12