Do I need to upgrade to Log4j 2.17.1?
Apache Team has released a new upgrade of Log4j library 2.17.1 in response to the CVE-2021-44832. Though on CVSS scale it’s rated as 6.6 out of 10 but the vulnerability can’t be exploit until...
Apache Team has released a new upgrade of Log4j library 2.17.1 in response to the CVE-2021-44832. Though on CVSS scale it’s rated as 6.6 out of 10 but the vulnerability can’t be exploit until...
Qualys , the IT security company has come out with a new tool for Windows that helps any one to scan for Log4j files in a Windows machine. It’s a simple Log4jScanner.exe called “log4jscanwin”...
As we all know the Log4j Vulnerability was a critical CVSS score of 10 Vulnerability that was discovered on Dec 9th, 2021. This was due to incorrect logging when a JNDI string is passed...
There has been frenzy among teams inside organization to find which applications & machines are using vulnerable version of Log4j, running the below Windows commands might be easy way to find log4j instead of...
Most of the Riverbed products like Client Accerlerator Controllers, Flow Gateway, FlowTraq, Modeler, NetAuditor Desktop, NetAuditor Web, NetCollector, NetExpress, NetIM 1.x, NetIM Test Engine, NetPlanner, NetProfiler, Packet Analyzer, Packet Trace Warehouse, SaaS Accelerator, Scon...
Almost all of the GoAnywhere products like GoAnywhere Open PGP Studio, MFT Agents, Gateway, MFT and normal agents would be affected by this Log4j Vulnerability. Upgrades have been released to products like Gateway, MFT,...
Almost all of the Illumio products like C-VENE, CLI, CloudSecure, Core on-premise PCE, Core SAAS PCE, Edge SAAS PCE, Edge-CrowdStrike, Flowlink, Kubelink, NEN, QRadar App, Splunk App and VEN has not been affected by...
Most of the CIS products like CSAT PRO, CAT Prov Assessor v4, CAT Pro Assessor v4 Service, CAT Lite, CAT Pro Assessor v3 Full have been impacted by Log4j Vulnerability. Rest of the products...
Some of the Oracle Products like Fusion Middleware, Oracle Data Integrator, Oracle eBusiness Suite, Oracle Enterprise Repository, Oracle WebCenter Portal, Oracle WebCenter Sites and Oracle WebLogic Server have been impacted by Log4j vulnerability.Some of...
Almost of all of the SAE IT products like codeIT Runtime, codeIT Workbench, connectIT, net-line series5, setIT, SG-50 / Kombisafe, Straton Runtime, Straton Workbench, System-4, T10/T7 Touch panel, visIT Runtime, visIT Workbench have not...
Almost all of the Ruckus products like FlexMaster, SmartZone 100, SmartZone 144, SmartZone 300, Unleashed and Virtual SmartZone(vSZ), MultiSite Manager, Smart Cell Insight, Ruckus Cloud and Ruckus Analytics were impacted by Log4j Vulnerability. Ruckus...
JetBrains Hub application has been impacted by Log4J vulnerability. Hub standalone version needs to be patched immediately to prevent the log4j vulnerability being exploited. If you are using HubStandalone 2017.4 or earlier, then you...
Products of QNAP unaffected by Log4j Vulnerability are Qsirch, QTS, QuTS Hero ,QES operating systems along with MinimServer (maintained by Third party) are unaffected by this Vulnerability but the investigation is still continuing on for other...
Almost all of the OpenNMS products like Horizon, Meridian (including derived Minions and Sentinels), Minion appliance and PoweredBy OpenNMS have been affected by Log4j Vulnerability. Workarounds given earlier for these products have been withdrawn...
Except Altas Search, other products of MongoDB like Atlas, Mongo DB Community Edition, Driver, Enterprise Advanced, Realm, Tools have been unaffected by Log4j Vulnerability. As of Dec17th, Mongo DB Atlas search has been already...