List of Okta products affected by Log4j vulnerability

These are the list of Okta products affected by Log4j vulnerability. Some of them had already have patches released by the Okta team and it seems most of the other Okta products are not affected by this vulnerability. Okta has instructed customers to apply the updates to customer agents as soon as possible hw

Products impacted

• Okta RADIUS Server Agent
• Okta On-Prem MFA Agent
• Okta Identity Service (Already patched)

Source: https://sec.okta.com/articles/2021/12/log4shell

Okta Products not impacted

• Advanced Server Access
• Confluence Authenticator
• End user browser plugins:
  • Chrome
  • Firefox
  • Safari
  • Chromium Edge
  • Legacy Edge
  • Internet Explorer.
• Jira Authenticator
• Okta Access Gateway
• Okta AD Agent
• Okta Browser Plugin
• Okta IWA Web Agent
• Okta LDAP Agent
• Okta MFA Credential Provider for Windows
• Okta MFA provider for ADFS
• Okta Mobile
• Okta People Picker for Sharepoint (2010, 2013, 2016)
• Okta Provisioning Connector Tester
• Okta Provisioning Agent
• Password Sync Agent
• Okta Device Trust Windows Agent
• Okta Workflows
• Okta Verify