Informatica Products | Log4j Vulnerability

Some of the Informatica products like ActiveVOS, Axon Data Governance, Customer 360, Customer 360 Insights, Data Engineering Integration, Data Engineering Quality, Data Engineering Streaming, Data Privacy Management, Data Replication, Enterprise Data Catalog, Enterprise Data Preparation, Fast Clone, Informatica Data Quality, Metadata Manager, PowerCenter,PowerExchange CDC Publisher, PowerExchange for CDC and Mainframe, Product 360 & Supplier 360 have been affected by Log4j Vulnerability. Rest of the products have been unaffected by Log4j vulnerability as displayed in the below table..

Informatica ProductStatusPatched?
ActiveVOSVulnerableRemediation
Address VerificationNot VulnerableNot Needed
Axon Data GovernanceVulnerableRemediation
Business GlossaryNot VulnerableNot Needed
Cloud Customer 360 for SalesforceNot VulnerableNot Needed
Customer 360VulnerableRemediation
Customer 360 InsightsVulnerableRemediation
Data ArchiveNot VulnerableNot Needed
Data Engineering IntegrationVulnerableRemediation
Data Engineering QualityVulnerableRemediation
Data Engineering StreamingVulnerableRemediation
Data ExchangeNot VulnerableNot Needed
Data Integration HubNot VulnerableNot Needed
Data Privacy ManagementVulnerableRemediation
Data ReplicationVulnerableRemediation
Dynamic Data MaskingNot VulnerableNot Needed
Edge Data StreamingNot VulnerableNot Needed
Enterprise Data CatalogVulnerableRemediation
Enterprises Data Catalog Advanced ScannersNot VulnerableNot Needed
Enterprise Data PreparationVulnerableRemediation
Fast CloneVulnerableRemediation
Informatica Data QualityVulnerableRemediation
Identity ResolutionNot VulnerableNot Needed
Intelligent Structure DiscoveryNot VulnerableNot Needed
Managed File TransferNot VulnerableNot Needed
Metadata ManagerVulnerableRemediation
Multidomain MDMEBFRemediation
PowerCenterVulnerableRemediation
PowerExchange AdaptersNot VulnerableNot Needed
PowerExchange CDC PublisherVulnerableRemediation
PowerExchange for CDC and MainframeVulnerableRemediation
ProcurementNot VulnerableNot Needed
Product 360VulnerableRemediation
Relate 360Not VulnerableNot Needed
SSA-NAME3Not VulnerableNot Needed
Supplier 360VulnerableRemediation
Test Data ManagementNot VulnerableNot Needed
Source: https://knowledge.informatica.com/s/article/Apache-log4j-Zero-day-RCE-Vulnerability-CVE-2021-44228-Updates-for-Informatica-On-premises-Products?language=en_US&type=external