CISA Log4j (CVE-2021-44228) Affected Vendor & Software List

0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Status Descriptions

Status	Description
Unknown	Status unknown. Default choice.
Affected	Reported to be affected by CVE-2021-44228.
Not Affected	Reported to NOT be affected by CVE-2021-44228 and no further action necessary.
Fixed	Patch and/or mitigations available (see provided links).
Under Investigation	Vendor investigating status.

Software List

This list has been populated using information from the following sources:

Kevin Beaumont
SwitHak
National Cyber Security Centre - Netherlands (NCSC-NL)

NOTE: This file is automatically generated. To submit updates, please refer to CONTRIBUTING.md.

Vendor	Product	Affected Versions	Status	Vendor Links	Notes	References	Reporter	Last Updated
Tableau	Tableau Bridge	The following versions and lower: 20214.21.1109.1748, 20213.21.1112.1434, 20212.21.0818.1843, 20211.21.0617.1133, 20204.21.0217.1203, 20203.20.0913.2112, 20202.20.0721.1350, 20201.20.0614.2321, 20194.20.0614.2307, 20193.20.0614.2306, 20192.19.0917.1648, 20191.19.0402.1911, 20183.19.0115.1143	Affected	link			cisagov	2021-12-22
Tableau	Tableau Desktop	The following versions and lower: 2021.4, 2021.3.4, 2021.2.5, 2021.1.8, 2020.4.11, 2020.3.14, 2020.2.19, 2020.1.22, 2019.4.25, 2019.3.26, 2019.2.29, 2019.1.29, 2018.3.29	Affected	link			cisagov	2021-12-22
Tableau	Tableau Prep Builder	The following versions and lower: 22021.4.1, 2021.3.2, 2021.2.2, 2021.1.4, 2020.4.1, 2020.3.3, 2020.2.3, 2020.1.5, 2019.4.2, 2019.3.2, 2019.2.3, 2019.1.4, 2018.3.3	Affected	link			cisagov	2021-12-22
Tableau	Tableau Public Desktop Client	The following versions and lower: 2021.4	Affected	link			cisagov	2021-12-22
Tableau	Tableau Reader	The following versions and lower: 2021.4	Affected	link			cisagov	2021-12-22
Tableau	Tableau Server	The following versions and lower: 2021.4, 2021.3.4, 2021.2.5, 2021.1.8, 2020.4.11, 2020.3.14, 2020.2.19, 2020.1.22, 2019.4.25, 2019.3.26, 2019.2.29, 2019.1.29, 2018.3.29	Affected	link			cisagov	2021-12-22
Talend			Unknown	link			cisagov	2022-01-12
Tanium	All		Not Affected	link	Tanium does not use Log4j.		cisagov	2021-12-21
TealiumIQ			Unknown	link			cisagov	2022-01-12
TeamPasswordManager			Unknown	link			cisagov	2022-01-12
Teamviewer			Unknown	link			cisagov	2022-01-12
Tech Software	OneAegis (f/k/a IRBManager)		Not Affected	link	OneAegis does not use Log4j.		cisagov	2021-12-15
Tech Software	SMART		Not Affected	link	SMART does not use Log4j.		cisagov	2021-12-15
Tech Software	Study Binders		Not Affected	link	Study Binders does not use Log4j.		cisagov	2021-12-15
TechSmith			Unknown	link			cisagov	2022-01-12
Telestream			Unknown	link			cisagov	2022-01-12
Tenable	Tenable.io / Nessus		Unknown	link	None of Tenable’s products are running the version of Log4j vulnerable to CVE-2021-44228 or CVE-2021-45046 at this time		cisagov	2022-01-12
Thales	CADP/SafeNet Protect App (PA) - JCE		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Application Data Protection (CADP) – CAPI.net & Net Core		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Batch Data Transformation (BDT) 2.3		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Cloud Key Manager (CCKM) Appliance		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Cloud Key Manager (CCKM) Embedded		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Database Protection		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Manager		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Transparent Encryption (CTE/VTE/CTE-U)		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Vaulted Tokenization (CT-V) / SafeNet Tokenization Manager		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust Vaultless Tokenization (CTS, CT-VL)		Unknown	link			cisagov	2021-12-17
Thales	CipherTrust/SafeNet PDBCTL		Unknown	link			cisagov	2021-12-17
Thales	Crypto Command Center (CCC)		Unknown	link			cisagov	2021-12-17
Thales	Data Protection on Demand		Unknown	link			cisagov	2021-12-17
Thales	Data Security Manager (DSM)		Unknown	link			cisagov	2021-12-17
Thales	KeySecure		Unknown	link			cisagov	2021-12-17
Thales	Luna EFT		Unknown	link			cisagov	2021-12-17
Thales	Luna Network, PCIe, Luna USB HSM and backup devices		Unknown	link			cisagov	2021-12-17
Thales	Luna SP		Unknown	link			cisagov	2021-12-17
Thales	payShield Monitor		Unknown	link			cisagov	2021-12-17
Thales	ProtectServer HSMs		Unknown	link			cisagov	2021-12-17
Thales	SafeNet Authentication Client		Unknown	link			cisagov	2021-12-17
Thales	SafeNet eToken (all products)		Unknown	link			cisagov	2021-12-17
Thales	SafeNet IDPrime Virtual		Unknown	link			cisagov	2021-12-17
Thales	SafeNet IDPrime(all products)		Unknown	link			cisagov	2021-12-17
Thales	SafeNet LUKS		Unknown	link			cisagov	2021-12-17
Thales	SafeNet PKCS#11 and TDE		Unknown	link			cisagov	2021-12-17
Thales	SafeNet ProtectApp (PA) CAPI, .Net & Net Core		Unknown	link			cisagov	2021-12-17
Thales	SafeNet ProtectDB (PDB)		Unknown	link			cisagov	2021-12-17
Thales	Safenet ProtectFile and ProtectFile- Fuse		Unknown	link			cisagov	2021-12-17
Thales	SafeNet ProtectV		Unknown	link			cisagov	2021-12-17
Thales	SafeNet SQL EKM		Unknown	link			cisagov	2021-12-17
Thales	SafeNet Transform Utility (TU)		Unknown	link			cisagov	2021-12-17
Thales	SafeNet Trusted Access (STA)		Unknown	link			cisagov	2021-12-17
Thales	SafeNet Vaultless Tokenization		Unknown	link			cisagov	2021-12-17
Thales	SAS on Prem (SPE/PCE)		Unknown	link			cisagov	2021-12-17
Thales	Sentinel Connect		Unknown	link			cisagov	2021-12-17
Thales	Sentinel EMS Enterprise aaS		Unknown	link			cisagov	2021-12-17
Thales	Sentinel EMS Enterprise OnPremise		Unknown	link			cisagov	2021-12-17
Thales	Sentinel Envelope		Unknown	link			cisagov	2021-12-17
Thales	Sentinel ESDaaS		Unknown	link			cisagov	2021-12-17
Thales	Sentinel HASP, Legacy dog, Maze, Hardlock		Unknown	link			cisagov	2021-12-17
Thales	Sentinel LDK EMS (LDK-EMS)		Unknown	link			cisagov	2021-12-17
Thales	Sentinel LDKaas (LDK-EMS)		Unknown	link			cisagov	2021-12-17
Thales	Sentinel Professional Services components (both Thales hosted & hosted on-premises by customers)		Unknown	link			cisagov	2021-12-17
Thales	Sentinel RMS		Unknown	link			cisagov	2021-12-17
Thales	Sentinel SCL		Unknown	link			cisagov	2021-12-17
Thales	Sentinel Superdog, SuperPro, UltraPro, SHK		Unknown	link			cisagov	2021-12-17
Thales	Sentinel Up		Unknown	link			cisagov	2021-12-17
Thales	Thales Data Platform (TDP)(DDC)		Unknown	link			cisagov	2021-12-17
Thales	Thales payShield 10k		Unknown	link			cisagov	2021-12-17
Thales	Thales payShield 9000		Unknown	link			cisagov	2021-12-17
Thales	Thales payShield Manager		Unknown	link			cisagov	2021-12-17
Thales	Vormetirc Key Manager (VKM)		Unknown	link			cisagov	2021-12-17
Thales	Vormetric Application Encryption (VAE)		Unknown	link			cisagov	2021-12-17
Thales	Vormetric Protection for Terradata Database (VPTD)		Unknown	link			cisagov	2021-12-17
Thales	Vormetric Tokenization Server (VTS)		Unknown	link			cisagov	2021-12-17
Thermo Fisher Scientific			Unknown	link			cisagov	2021-12-22
Thermo-Calc	Thermo-Calc		Not Affected	link	Use the program as normal, Install the 2022a patch when available		cisagov	2021-12-22
Thermo-Calc	Thermo-Calc		Not Affected	link	Use the program as normal		cisagov	2021-12-22
Thermo-Calc	Thermo-Calc		Not Affected	link	Use the program as normal, delete the Log4j 2 files in the program installation if required, see advisory for instructions.		cisagov	2021-12-22
Thermo-Calc	Thermo-Calc		Not Affected	link	Use the program as normal		cisagov	2021-12-22
Thomson Reuters	HighQ Appliance	<3.5	Affected	link	Reported by vendor - Documentation is in vendor's client portal (login required). This advisory is available to customer only and has not been reviewed by CISA.		cisagov	2021-12-20
ThreatLocker			Unknown	link			cisagov	2022-01-12
ThycoticCentrify	Account Lifecycle Manager		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Cloud Suite		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Connection Manager		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	DevOps Secrets Vault		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Password Reset Server		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Privilege Manager		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Privileged Behavior Analytics		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Secret Server		Not Affected	link			cisagov	2021-12-10
ThycoticCentrify	Server Suite		Not Affected	link			cisagov	2021-12-10
Tibco			Unknown	link			cisagov	2022-01-12
Top Gun Technology (TGT)			Unknown	link			cisagov	2022-01-12
TopDesk			Unknown	link			cisagov	2022-01-12
Topicus Security	Topicus KeyHub		Not Affected	link			cisagov	2021-12-20
Topix			Unknown	link			cisagov	2022-01-12
Tosibox			Unknown	link			cisagov	2022-01-12
TPLink	Omega Controller	Linux/Windows(all)	Affected	link	Update is Beta. Reddit: overwritten vulnerable log4j with 2.15 files as potential workaround. Though that should now be done with 2.16	Tp Community Link,Reddit Link	cisagov	2021-12-15
TrendMicro	All		Unknown	link			cisagov	2022-01-12
Tricentis Tosca			Unknown	link			cisagov	2022-01-12
Tridium			Unknown	link	Document access requires authentication. CISA is not able to validate vulnerability status.		cisagov	2022-01-19
Trimble	eCognition	10.2.0 Build 4618	Affected		Remediation steps provided by Trimble		cisagov	2021-12-23
Tripp Lite	LX Platform devices (includes WEBCARDLX, WEBCARDLXMINI, SRCOOLNETLX, SRCOOLNET2LX and devices with pre-installed or embedded WEBCARDLX interfaces)		Unknown	link			cisagov	2022-01-04
Tripp Lite	PowerAlert Local (PAL)		Unknown	link	Some versions of PAL use log4j v1 which is NOT AFFECTED by the CVE-2021-44228 vulnerability.		cisagov	2022-01-04
Tripp Lite	PowerAlert Network Management System (PANMS)		Unknown	link	Some versions of PAL use log4j v1 which is NOT AFFECTED by the CVE-2021-44228 vulnerability.		cisagov	2022-01-04
Tripp Lite	PowerAlert Network Shutdown Agent (PANSA)		Unknown	link	Some versions of PANSA use log4j v1 which is NOT AFFECTED by the CVE-2021-44228 vulnerability.		cisagov	2022-01-04
Tripp Lite	PowerAlertElement Manager (PAEM)	1.0.0	Affected	link	Tripp Lite will soon be issuing a patch in the form of PAEM 1.0.1 which will contain a patched version of Log4j2		cisagov	2022-01-04
Tripp Lite	SNMPWEBCARD, SRCOOLNET, SRCOOLNET2 and devices with pre-installed or embedded SNMPWEBCARD		Unknown	link			cisagov	2022-01-04
Tripp Lite	TLNETCARD and associated software		Unknown	link			cisagov	2022-01-04
Tripwire			Unknown	link			cisagov	2022-01-12
TrueNAS			Unknown	link			cisagov	2022-01-12
Tufin			Unknown	link			cisagov	2022-01-12
TYPO3			Unknown	link			cisagov	2022-01-12

31 KiB Raw Blame History Unescape Escape

CISA Log4j (CVE-2021-44228) Affected Vendor & Software List

Status Descriptions

Software List

31 KiB

Raw Blame History