List of Nutanix Products affected by Log4j Vulnerability

Nutanix the American Cloud Company has been also affected by the Log4j vulnerability. They have come out with advisory about which products are vulnerable. Some of the Cloud services are vulnerable and the Nutanix Team has already patched and updated with WAF to prevent exploitation of the Vulnerability


Nutanix ProductVersionsStatusPatched?
AHVAll VersionsNot Vulnerable Not Needed
AOS (Community Edition) All Versions Not Vulnerable Not Needed
AOS (LTS) All Versions Not Vulnerable Not Needed
AOS (STS) All Versions VulnerablePatched
BeamSaaSVulnerable Patched
Beam GovSaas Vulnerable Patched
CalmOn-Prem Vulnerable Patched
CalmSaaS Not Vulnerable Not Needed
Collector PortalSaaS Vulnerable Patched
CollectorAll Not Vulnerable Not Needed
Data LensSaaS Not Vulnerable Not Needed
Era All Versions Not Vulnerable Not Needed
File Analytics All Versions Vulnerable Patched
Files All Versions Not Vulnerable Not Needed
Flow All Versions Not Vulnerable Not Needed
Flow Security CentralSaaS Vulnerable Patched
Foundation All Versions Not Vulnerable Not Needed
Frame GovSaaS Vulnerable Patched
FrameSaaS Public Vulnerable Patched
FSCVMAll versions Investigation Not Needed
InsightsSaaS Not Vulnerable Not Needed
KarbonOn-PremInvestigation Mitigation
Karbon Platform ServiceSaaS Vulnerable Patched
LCM All Versions Not Vulnerable Not Needed
LeapSaaS Vulnerable Patched
Mine All Versions Vulnerable Mitigation
Move All Versions Not Vulnerable Not Needed
MSP All Versions Investigation Mitigation
NCC All Versions Not Vulnerable Not Needed
Objects All Versions Investigation Mitigation
Prism Central All Versions Vulnerable Patched
Sizer SaaSFix Patched
Volumes All Versions Not Vulnerable Not Needed
Witness VM All Versions Vulnerable Mitigation
X-Ray All Versions Not Vulnerable Not Needed
Source: https://download.nutanix.com/alerts/Security_Advisory_0023.pdf

For some of the affected products, only Mitigation is available as of now and the patch is still pending from Nutanix side.


Shan

I am a  Technical Architect who dabbles with different languages and technologies

You may also like...