log4j-affected-db/software_lists/software_list_W.md

CISA Log4j (CVE-2021-44228) Affected Vendor & Software List

0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Status Descriptions

Status	Description
Unknown	Status unknown. Default choice.
Affected	Reported to be affected by CVE-2021-44228.
Not Affected	Reported to NOT be affected by CVE-2021-44228 and no further action necessary.
Fixed	Patch and/or mitigations available (see provided links).
Under Investigation	Vendor investigating status.

Software List

This list has been populated using information from the following sources:

• Kevin Beaumont
• SwitHak
• National Cyber Security Centre - Netherlands (NCSC-NL)

NOTE: This file is automatically generated. To submit updates, please refer to CONTRIBUTING.md.

Vendor	Product	Affected Versions	Patched Versions	Status	Vendor Links	Notes	References	Reporter	Last Updated
WAGO	WAGO Smart Script		4.2.x < 4.8.1.3	Fixed	link			cisagov	2021-12-17
Wallarm	All			Unknown	link			cisagov	2022-01-12
Wallix	Access Manager			Fixed	link	Customer Portal for patch found in advisory. This patch is available to customer only and has not been reviewed by CISA.		cisagov	2022-02-03
Wasp Barcode technologies	All			Unknown	link			cisagov	2022-01-12
Watcher	All			Not Affected	link			cisagov	2022-01-12
WatchGuard	AuthPoint		Cloud	Fixed	link			cisagov	2022-01-12
WatchGuard	Dimension			Not Affected	link			cisagov	2022-01-12
WatchGuard	EDPR and Panda AD360			Not Affected	link			cisagov	2022-01-12
WatchGuard	Firebox			Not Affected	link			cisagov	2022-01-12
WatchGuard	System Manager, Dimension, and Panda AD360			Not Affected	link			cisagov	2022-01-12
WatchGuard	Threat Detection and Response		Cloud	Fixed	link			cisagov	2022-01-12
WatchGuard	Wi-Fi Cloud		Cloud	Fixed	link			cisagov	2022-01-12
Western Digital				Unknown	link			cisagov	2022-01-12
WIBU Systems	CodeMeter Cloud Lite		2.2 and prior	Fixed	link			cisagov	2021-12-22
WIBU Systems	CodeMeter Keyring for TIA Portal		1.30 and prior	Fixed	link	Only the Password Manager is affected		cisagov	2021-12-22
WildFly	All			Not Affected	link			cisagov	2022-01-21
Wind River	LTS17			Not Affected	link			cisagov	2022-01-21
Wind River	LTS18			Not Affected	link			cisagov	2022-01-21
Wind River	LTS19			Not Affected	link			cisagov	2022-01-21
Wind River	LTS21			Not Affected	link			cisagov	2022-01-12
Wind River	WRL-6			Not Affected	link	The Wind River Linux Product Versions 8.0 and prior contains the log4j1.2 and JMSAppender components, however, JMSAppender is deactivated in the release package and not affected by CVE-2021-4104 customers are advised to NOT manually activate the JMSAppender component.		cisagov	2022-01-21
Wind River	WRL-7			Not Affected	link	The Wind River Linux Product Versions 8.0 and prior contains the log4j1.2 and JMSAppender components, however, JMSAppender is deactivated in the release package and not affected by CVE-2021-4104 customers are advised to NOT manually activate the JMSAppender component.		cisagov	2022-01-21
Wind River	WRL-8			Not Affected	link	The Wind River Linux Product Versions 8.0 and prior contains the log4j1.2 and JMSAppender components, however, JMSAppender is deactivated in the release package and not affected by CVE-2021-4104 customers are advised to NOT manually activate the JMSAppender component.		cisagov	2022-01-21
Wind River	WRL-9			Not Affected	link			cisagov	2022-01-21
WireShark	All			Not Affected	link			cisagov	2021-12-15
Wistia	All			Unknown	link			cisagov	2022-01-12
WitFoo	Precinct		6.x	Fixed	link	WitFoo Streamer & Apache Kafka Docker containers are/were vulnerable. See advisory.		cisagov	2022-01-12
WordPress	All			Not Affected	link			cisagov	2022-01-12
Worksphere	All			Unknown	link			cisagov	2022-01-12
Wowza	Streaming Engine		4.7.8, 4.8.x	Fixed	link			cisagov	2022-01-12
WSO2	API Manager		>= 3.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	API Manager Analytics		>= 2.6.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Enterprise Integrator		>= 6.1.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Enterprise Integrator Analytics		>= 6.6.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Identity Server		>= 5.9.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Identity Server Analytics		>= 5.7.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Identity Server as Key Manager		>= 5.9.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Micro Gateway		>= 3.2.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Micro Integrator		>= 1.1.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Micro Integrator Dashboard		>= 4.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Micro Integrator Monitoring Dashboard		>= 1.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Open Banking AM		>= 2.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Open Banking BI		>= 1.3.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Open Banking KM		>= 2.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Stream Integrator		>= 1.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Stream Integrator Tooling		>= 1.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26
WSO2	Stream Processor		>= 4.0.0	Fixed	link	A temporary mitigation is available while vendor works on update.		cisagov	2022-01-26