List of Nutanix Products affected by Log4j Vulnerability
Nutanix the American Cloud Company has been also affected by the Log4j vulnerability. They have come out with advisory about which products are vulnerable. Some of the Cloud services are vulnerable and the Nutanix Team has already patched and updated with WAF to prevent exploitation of the Vulnerability
| Nutanix Product | Versions | Status | Patched? |
|---|---|---|---|
| AHV | All Versions | Not Vulnerable | Not Needed |
| AOS (Community Edition) | All Versions | Not Vulnerable | Not Needed |
| AOS (LTS) | All Versions | Not Vulnerable | Not Needed |
| AOS (STS) | All Versions | Vulnerable | Patched |
| Beam | SaaS | Vulnerable | Patched |
| Beam Gov | Saas | Vulnerable | Patched |
| Calm | On-Prem | Vulnerable | Patched |
| Calm | SaaS | Not Vulnerable | Not Needed |
| Collector Portal | SaaS | Vulnerable | Patched |
| Collector | All | Not Vulnerable | Not Needed |
| Data Lens | SaaS | Not Vulnerable | Not Needed |
| Era | All Versions | Not Vulnerable | Not Needed |
| File Analytics | All Versions | Vulnerable | Patched |
| Files | All Versions | Not Vulnerable | Not Needed |
| Flow | All Versions | Not Vulnerable | Not Needed |
| Flow Security Central | SaaS | Vulnerable | Patched |
| Foundation | All Versions | Not Vulnerable | Not Needed |
| Frame Gov | SaaS | Vulnerable | Patched |
| Frame | SaaS Public | Vulnerable | Patched |
| FSCVM | All versions | Investigation | Not Needed |
| Insights | SaaS | Not Vulnerable | Not Needed |
| Karbon | On-Prem | Investigation | Mitigation |
| Karbon Platform Service | SaaS | Vulnerable | Patched |
| LCM | All Versions | Not Vulnerable | Not Needed |
| Leap | SaaS | Vulnerable | Patched |
| Mine | All Versions | Vulnerable | Mitigation |
| Move | All Versions | Not Vulnerable | Not Needed |
| MSP | All Versions | Investigation | Mitigation |
| NCC | All Versions | Not Vulnerable | Not Needed |
| Objects | All Versions | Investigation | Mitigation |
| Prism Central | All Versions | Vulnerable | Patched |
| Sizer | SaaS | Fix | Patched |
| Volumes | All Versions | Not Vulnerable | Not Needed |
| Witness VM | All Versions | Vulnerable | Mitigation |
| X-Ray | All Versions | Not Vulnerable | Not Needed |
For some of the affected products, only Mitigation is available as of now and the patch is still pending from Nutanix side.
