mirror of
https://github.com/cisagov/log4j-affected-db.git
synced 2024-11-17 06:17:55 +00:00
31 KiB
31 KiB
CISA Log4j (CVE-2021-44228) Affected Vendor & Software List
0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Status Descriptions
Status | Description |
---|---|
Unknown | Status unknown. Default choice. |
Affected | Reported to be affected by CVE-2021-44228. |
Not Affected | Reported to NOT be affected by CVE-2021-44228 and no further action necessary. |
Fixed | Patch and/or mitigations available (see provided links). |
Under Investigation | Vendor investigating status. |
Software List
This list has been populated using information from the following sources:
- Kevin Beaumont
- SwitHak
- National Cyber Security Centre - Netherlands (NCSC-NL)
NOTE: This file is automatically generated. To submit updates, please refer to
CONTRIBUTING.md
.
Vendor | Product | Affected Versions | Patched Versions | Status | Vendor Links | Notes | References | Reporter | Last Updated |
---|---|---|---|---|---|---|---|---|---|
Tableau | Tableau Bridge | The following versions and lower: 20214.21.1109.1748, 20213.21.1112.1434, 20212.21.0818.1843, 20211.21.0617.1133, 20204.21.0217.1203, 20203.20.0913.2112, 20202.20.0721.1350, 20201.20.0614.2321, 20194.20.0614.2307, 20193.20.0614.2306, 20192.19.0917.1648, 20191.19.0402.1911, 20183.19.0115.1143 | Affected | link | cisagov | 2021-12-22 | |||
Tableau | Tableau Desktop | The following versions and lower: 2021.4, 2021.3.4, 2021.2.5, 2021.1.8, 2020.4.11, 2020.3.14, 2020.2.19, 2020.1.22, 2019.4.25, 2019.3.26, 2019.2.29, 2019.1.29, 2018.3.29 | Affected | link | cisagov | 2021-12-22 | |||
Tableau | Tableau Prep Builder | The following versions and lower: 22021.4.1, 2021.3.2, 2021.2.2, 2021.1.4, 2020.4.1, 2020.3.3, 2020.2.3, 2020.1.5, 2019.4.2, 2019.3.2, 2019.2.3, 2019.1.4, 2018.3.3 | Affected | link | cisagov | 2021-12-22 | |||
Tableau | Tableau Public Desktop Client | The following versions and lower: 2021.4 | Affected | link | cisagov | 2021-12-22 | |||
Tableau | Tableau Reader | The following versions and lower: 2021.4 | Affected | link | cisagov | 2021-12-22 | |||
Tableau | Tableau Server | The following versions and lower: 2021.4, 2021.3.4, 2021.2.5, 2021.1.8, 2020.4.11, 2020.3.14, 2020.2.19, 2020.1.22, 2019.4.25, 2019.3.26, 2019.2.29, 2019.1.29, 2018.3.29 | Affected | link | cisagov | 2021-12-22 | |||
Talend | Unknown | link | cisagov | 2022-01-12 | |||||
Tanium | All | Not Affected | link | Tanium does not use Log4j. | cisagov | 2021-12-21 | |||
TealiumIQ | Unknown | link | cisagov | 2022-01-12 | |||||
TeamPasswordManager | Unknown | link | cisagov | 2022-01-12 | |||||
Teamviewer | Unknown | link | cisagov | 2022-01-12 | |||||
Tech Software | OneAegis (f/k/a IRBManager) | Not Affected | link | OneAegis does not use Log4j. | cisagov | 2021-12-15 | |||
Tech Software | SMART | Not Affected | link | SMART does not use Log4j. | cisagov | 2021-12-15 | |||
Tech Software | Study Binders | Not Affected | link | Study Binders does not use Log4j. | cisagov | 2021-12-15 | |||
TechSmith | Unknown | link | cisagov | 2022-01-12 | |||||
Telestream | Unknown | link | cisagov | 2022-01-12 | |||||
Tenable | Tenable.io / Nessus | Unknown | link | None of Tenable’s products are running the version of Log4j vulnerable to CVE-2021-44228 or CVE-2021-45046 at this time | cisagov | 2022-01-12 | |||
Thales | CADP/SafeNet Protect App (PA) - JCE | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Application Data Protection (CADP) – CAPI.net & Net Core | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Batch Data Transformation (BDT) 2.3 | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Cloud Key Manager (CCKM) Appliance | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Cloud Key Manager (CCKM) Embedded | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Database Protection | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Manager | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Transparent Encryption (CTE/VTE/CTE-U) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Vaulted Tokenization (CT-V) / SafeNet Tokenization Manager | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust Vaultless Tokenization (CTS, CT-VL) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | CipherTrust/SafeNet PDBCTL | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Crypto Command Center (CCC) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Data Protection on Demand | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Data Security Manager (DSM) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | KeySecure | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Luna EFT | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Luna Network, PCIe, Luna USB HSM and backup devices | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Luna SP | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | payShield Monitor | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | ProtectServer HSMs | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet Authentication Client | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet eToken (all products) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet IDPrime Virtual | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet IDPrime(all products) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet LUKS | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet PKCS#11 and TDE | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet ProtectApp (PA) CAPI, .Net & Net Core | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet ProtectDB (PDB) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Safenet ProtectFile and ProtectFile- Fuse | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet ProtectV | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet SQL EKM | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet Transform Utility (TU) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet Trusted Access (STA) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SafeNet Vaultless Tokenization | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | SAS on Prem (SPE/PCE) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel Connect | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel EMS Enterprise aaS | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel EMS Enterprise OnPremise | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel Envelope | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel ESDaaS | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel HASP, Legacy dog, Maze, Hardlock | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel LDK EMS (LDK-EMS) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel LDKaas (LDK-EMS) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel Professional Services components (both Thales hosted & hosted on-premises by customers) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel RMS | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel SCL | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel Superdog, SuperPro, UltraPro, SHK | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Sentinel Up | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Thales Data Platform (TDP)(DDC) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Thales payShield 10k | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Thales payShield 9000 | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Thales payShield Manager | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Vormetirc Key Manager (VKM) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Vormetric Application Encryption (VAE) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Vormetric Protection for Terradata Database (VPTD) | Unknown | link | cisagov | 2021-12-17 | ||||
Thales | Vormetric Tokenization Server (VTS) | Unknown | link | cisagov | 2021-12-17 | ||||
Thermo Fisher Scientific | Unknown | link | cisagov | 2021-12-22 | |||||
Thermo-Calc | Thermo-Calc | Not Affected | link | Use the program as normal, Install the 2022a patch when available | cisagov | 2021-12-22 | |||
Thermo-Calc | Thermo-Calc | Not Affected | link | Use the program as normal | cisagov | 2021-12-22 | |||
Thermo-Calc | Thermo-Calc | Not Affected | link | Use the program as normal, delete the Log4j 2 files in the program installation if required, see advisory for instructions. | cisagov | 2021-12-22 | |||
Thermo-Calc | Thermo-Calc | Not Affected | link | Use the program as normal | cisagov | 2021-12-22 | |||
Thomson Reuters | HighQ Appliance | <3.5 | Affected | link | Reported by vendor - Documentation is in vendor's client portal (login required). This advisory is available to customer only and has not been reviewed by CISA. | cisagov | 2021-12-20 | ||
ThreatLocker | Unknown | link | cisagov | 2022-01-12 | |||||
ThycoticCentrify | Account Lifecycle Manager | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Cloud Suite | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Connection Manager | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | DevOps Secrets Vault | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Password Reset Server | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Privilege Manager | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Privileged Behavior Analytics | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Secret Server | Not Affected | link | cisagov | 2021-12-10 | ||||
ThycoticCentrify | Server Suite | Not Affected | link | cisagov | 2021-12-10 | ||||
Tibco | Unknown | link | cisagov | 2022-01-12 | |||||
Top Gun Technology (TGT) | Unknown | link | cisagov | 2022-01-12 | |||||
TopDesk | Unknown | link | cisagov | 2022-01-12 | |||||
Topicus Security | Topicus KeyHub | Not Affected | link | cisagov | 2021-12-20 | ||||
Topix | Unknown | link | cisagov | 2022-01-12 | |||||
Tosibox | Unknown | link | cisagov | 2022-01-12 | |||||
TPLink | Omega Controller | Linux/Windows(all) | Affected | link | Update is Beta. Reddit: overwritten vulnerable log4j with 2.15 files as potential workaround. Though that should now be done with 2.16 | Tp Community Link,Reddit Link | cisagov | 2021-12-15 | |
TrendMicro | All | Unknown | link | cisagov | 2022-01-12 | ||||
Tricentis Tosca | Unknown | link | cisagov | 2022-01-12 | |||||
Tridium | Unknown | link | Document access requires authentication. CISA is not able to validate vulnerability status. | cisagov | 2022-01-19 | ||||
Trimble | eCognition | 10.2.0 Build 4618 | Affected | Remediation steps provided by Trimble | cisagov | 2021-12-23 | |||
Tripp Lite | LX Platform devices (includes WEBCARDLX, WEBCARDLXMINI, SRCOOLNETLX, SRCOOLNET2LX and devices with pre-installed or embedded WEBCARDLX interfaces) | Unknown | link | cisagov | 2022-01-04 | ||||
Tripp Lite | PowerAlert Local (PAL) | Unknown | link | Some versions of PAL use log4j v1 which is NOT AFFECTED by the CVE-2021-44228 vulnerability. | cisagov | 2022-01-04 | |||
Tripp Lite | PowerAlert Network Management System (PANMS) | Unknown | link | Some versions of PAL use log4j v1 which is NOT AFFECTED by the CVE-2021-44228 vulnerability. | cisagov | 2022-01-04 | |||
Tripp Lite | PowerAlert Network Shutdown Agent (PANSA) | Unknown | link | Some versions of PANSA use log4j v1 which is NOT AFFECTED by the CVE-2021-44228 vulnerability. | cisagov | 2022-01-04 | |||
Tripp Lite | PowerAlertElement Manager (PAEM) | 1.0.0 | Affected | link | Tripp Lite will soon be issuing a patch in the form of PAEM 1.0.1 which will contain a patched version of Log4j2 | cisagov | 2022-01-04 | ||
Tripp Lite | SNMPWEBCARD, SRCOOLNET, SRCOOLNET2 and devices with pre-installed or embedded SNMPWEBCARD | Unknown | link | cisagov | 2022-01-04 | ||||
Tripp Lite | TLNETCARD and associated software | Unknown | link | cisagov | 2022-01-04 | ||||
Tripwire | Unknown | link | cisagov | 2022-01-12 | |||||
TrueNAS | Unknown | link | cisagov | 2022-01-12 | |||||
Tufin | Unknown | link | cisagov | 2022-01-12 | |||||
TYPO3 | Unknown | link | cisagov | 2022-01-12 |