wid-sec-w-2022-0351
Vulnerability from csaf_certbund
Published
2021-12-09 23:00
Modified
2022-12-11 23:00
Summary
Apache log4j: Schwachstelle ermöglicht Codeausführung
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Apache log4j ist ein Framework zum Loggen von Anwendungsmeldungen in Java.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache log4j ausnutzen, um beliebigen Programmcode auszuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- CISCO Appliance
- Juniper Appliance
- NetApp Appliance
- Native Hypervisor
- Applicance
- Sonstiges
- Hardware Appliance
{
"document": {
"aggregate_severity": {
"text": "kritisch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apache log4j ist ein Framework zum Loggen von Anwendungsmeldungen in Java.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache log4j ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows\n- CISCO Appliance\n- Juniper Appliance\n- NetApp Appliance\n- Native Hypervisor\n- Applicance\n- Sonstiges\n- Hardware Appliance",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0351 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-0351.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0351 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0351"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2022-225 vom 2022-12-09",
"url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-225.html"
},
{
"category": "external",
"summary": "Red Hat Bugzilla - Bug 2030932 vom 2021-12-09",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030932"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-jfh8-c2jp-5v3q vom 2021-12-09",
"url": "https://github.com/advisories/GHSA-jfh8-c2jp-5v3q"
},
{
"category": "external",
"summary": "GitHub: CVE-2021-44228 Remote Code Injection In Log4j vom 2021-12-10",
"url": "https://github.com/jas502n/Log4j2-CVE-2021-44228"
},
{
"category": "external",
"summary": "Apache log4j Security Advisory vom 2021-12-10",
"url": "https://logging.apache.org/log4j/2.x/security.html"
},
{
"category": "external",
"summary": "Tweet von Deutsche Telekom CERT vom 2021-12-10",
"url": "https://twitter.com/DTCERT/status/1469258597930614787"
},
{
"category": "external",
"summary": "CERT-EU Security Advisory 2021-067 vom 2021-12-10",
"url": "https://media.cert.europa.eu/static/SecurityAdvisories/2021/CERT-EU-SA2021-067.pdf"
},
{
"category": "external",
"summary": "Elastic Security Announcement ESA-2021-31 vom 2021-12-13",
"url": "https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476"
},
{
"category": "external",
"summary": "ExtremeNetworks Vulnerability Notice VN-2020-465 vom 2021-12-12",
"url": "https://extremeportal.force.com/ExtrArticleDetail?an=000100806"
},
{
"category": "external",
"summary": "VMware Security Advisory VMSA-2021-0028 vom 2021-12-11",
"url": "https://www.vmware.com/security/advisories/VMSA-2021-0028.html"
},
{
"category": "external",
"summary": "FortiGuard Labs PSIRT Advisory FG-IR-21-245 vom 2021-12-12",
"url": "https://www.fortiguard.com/psirt/FG-IR-21-245"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-003 vom 2021-12-11",
"url": "https://alas.aws.amazon.com/AL2022/ALAS-2021-003.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6525706 vom 2021-12-13",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-websphere-application-server-cve-2021-44228/"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-2842 vom 2021-12-12",
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00007.html"
},
{
"category": "external",
"summary": "Cisco Security Advisory CISCO-SA-APACHE-LOG4J-QRUKNEBD vom 2021-12-10",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd"
},
{
"category": "external",
"summary": "HCL Article KB0095493 vom 2021-12-13",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0095493"
},
{
"category": "external",
"summary": "Symantec Security Advisory SYMSA19793 vom 2021-12-13",
"url": "https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Security-Advisory-for-Log4j-2-CVE-2021-44228-Vulnerability/SYMSA19793"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5020 vom 2021-12-12",
"url": "http://www.debian.org/security/2021/dsa-5020"
},
{
"category": "external",
"summary": "F-Secure Policy Manager Update vom 2021-12-12",
"url": "https://status.f-secure.com/incidents/sk8vmr0h34pd"
},
{
"category": "external",
"summary": "RSA SecurID Authentication Manager Update vom 2021-12-12",
"url": "https://community.rsa.com/t5/general-security-advisories-and/rsa-customer-advisory-apache-vulnerability-log4j2-cve-2021-44228/ta-p/660501"
},
{
"category": "external",
"summary": "Splunk Security Advisory vom 2021-12-12",
"url": "https://www.splunk.com/en_us/blog/bulletins/splunk-security-advisory-for-apache-log4j-cve-2021-44228.html"
},
{
"category": "external",
"summary": "Red Hat Security Bulletin RHSB-2021-009 vom 2021-12-13",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-009"
},
{
"category": "external",
"summary": "Apache Kafka Mailing List vom 2021-12-12",
"url": "https://lists.apache.org/thread/lgbtvvmy68p0059yoyn9qxzosdmx4jdv"
},
{
"category": "external",
"summary": "Apache Struts Security Advice vom 2021-12-12",
"url": "https://struts.apache.org/announce-2021#a20211212-2"
},
{
"category": "external",
"summary": "Oracle Security Alert",
"url": "https://www.oracle.com/security-alerts/alert-cve-2021-44228.html"
},
{
"category": "external",
"summary": "Spring.io Blog",
"url": "https://spring.io/blog/2021/12/10/log4j2-vulnerability-and-spring-boot"
},
{
"category": "external",
"summary": "SOS Job Scheduler Vulnerability Release",
"url": "https://kb.sos-berlin.com/display/PKB/Vulnerability+Release+2.2.0"
},
{
"category": "external",
"summary": "SOS Job Scheduler Vulnerability Release",
"url": "https://kb.sos-berlin.com/display/PKB/Vulnerability+Release+1.13.10"
},
{
"category": "external",
"summary": "SAS Statement Regarding Remote Code Execution Vulnerability (CVE-2021-44228)",
"url": "https://support.sas.com/content/support/en/security-bulletins/remote-code-execution-vulnerability-cve-2021-44228.html"
},
{
"category": "external",
"summary": "Sammlung betroffener Produkte auf GitHub (NLD Nationaal Cyber Security Centrum)",
"url": "https://github.com/NCSC-NL/log4shell/tree/main/software"
},
{
"category": "external",
"summary": "Talos Intelligence Blog",
"url": "https://blog.talosintelligence.com/2021/12/apache-log4j-rce-vulnerability.html"
},
{
"category": "external",
"summary": "Github User \"CronUp\"",
"url": "https://github.com/CronUp/Malware-IOCs/blob/main/2021-12-11_Log4Shell_Botnets"
},
{
"category": "external",
"summary": "Atlassian FAQ for CVE-2021-44228 vom 2021-12-12",
"url": "https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html"
},
{
"category": "external",
"summary": "Siemens Security Advisory SSA-661247 vom 2021-12-13",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf"
},
{
"category": "external",
"summary": "Unify Security Advisory Report OBSO-2112-01 vom 2021-12-13",
"url": "https://networks.unify.com/security/advisories/OBSO-2112-01.pdf"
},
{
"category": "external",
"summary": "Juniper Security Advisory JSA11259 vom 2021-12-13",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11259\u0026cat=SIRT_1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5094 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5094"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5192-1 vom 2021-12-14",
"url": "https://ubuntu.com/security/notices/USN-5192-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5140 vom 2021-12-15",
"url": "https://access.redhat.com/errata/RHSA-2021:5140"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526174 vom 2021-12-15",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-access-manager-9-0-7-1-and-ibm-security-verify-access-10-0-0-0-may-be-affected-by-the-log4j-vulnerability-cve-2021-44228-2/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5137 vom 2021-12-15",
"url": "https://access.redhat.com/errata/RHSA-2021:5137"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5138 vom 2021-12-15",
"url": "https://access.redhat.com/errata/RHSA-2021:5138"
},
{
"category": "external",
"summary": "WIBU Security Advisory WIBU-211213-01 vom 2021-12-15",
"url": "https://cdn.wibu.com/fileadmin/wibu_downloads/security_advisories/Advisory_WIBU-211213-01.pdf"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526274 vom 2021-12-15",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-mq-blockchain-bridge-dependencies-are-vulnerable-to-an-issue-in-apache-log4j-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526174 vom 2021-12-14",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-access-manager-9-0-7-1-and-ibm-security-verify-access-10-0-0-0-may-be-affected-by-the-log4j-vulnerability-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526182 vom 2021-12-14",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-log4shell-vulnerability-affects-ibm-spss-statistics-cve-2021-44228/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5093 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5093"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5108 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5108"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5126 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5126"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5129 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5129"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5132 vom 2021-12-15",
"url": "https://access.redhat.com/errata/RHSA-2021:5132"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5127 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5127"
},
{
"category": "external",
"summary": "QNAP Security Advisory QSA-21-58 vom 2021-12-14",
"url": "https://www.qnap.com/de-de/security-advisory/QSA-21-58"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5128 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5128"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5130 vom 2021-12-14",
"url": "https://access.redhat.com/errata/RHSA-2021:5130"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5133 vom 2021-12-15",
"url": "https://access.redhat.com/errata/RHSA-2021:5133"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526184 vom 2021-12-14",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-log4shell-vulnerability-affects-ibm-spss-statistics-subscription-cve-2021-44228/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5134 vom 2021-12-15",
"url": "https://access.redhat.com/errata/RHSA-2021:5134"
},
{
"category": "external",
"summary": "Apache log4j Security Advisory vom 2021-12-14",
"url": "https://logging.apache.org/log4j/2.x/security.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527090 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-plus-container-backup-and-restore-for-kubernetes-and-openshift-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527084 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-operations-center-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527088 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-security-access-manager-for-enterprise-single-sign-on-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526640 vom 2021-12-15",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-log4j-as-used-in-ibm-qradar-user-behavior-analytics-application-add-on-to-ibm-qradar-siem-is-vulnerable-to-remote-code-execution-rce-cve-2021-44228/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5148 vom 2021-12-16",
"url": "https://access.redhat.com/errata/RHSA-2021:5148"
},
{
"category": "external",
"summary": "HCL Article KB0095516 vom 2021-12-16",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0095516"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526490 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-a-security-vulnerability-has-been-identified-in-websphere-application-server-shipped-with-ibm-websphere-remote-server-cve-2021-44228/"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5197-1 vom 2021-12-15",
"url": "https://ubuntu.com/security/notices/USN-5197-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:4097-1 vom 2021-12-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009912.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5106 vom 2021-12-16",
"url": "https://access.redhat.com/errata/RHSA-2021:5106"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526462 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-some-features-of-ibm-db2-cve-2021-44228/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:4096-1 vom 2021-12-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009911.html"
},
{
"category": "external",
"summary": "SAP Support Center",
"url": "https://support.sap.com/content/dam/support/en_us/library/ssp/my-support/trust-center/sap-tc-01-5025.pdf"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527080 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-client-web-user-interface-and-ibm-spectrum-protect-for-virtual-environments-cve-2021-44228/"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1730 vom 2021-12-16",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1730.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527082 vom 2021-12-16",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-is-vulnerable-to-a-remote-code-execution-vulnerability-in-log4j2-component/"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5022 vom 2021-12-16",
"url": "https://lists.debian.org/debian-security-announce/2021/msg00208.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5107 vom 2021-12-16",
"url": "https://access.redhat.com/errata/RHSA-2021:5107"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5141 vom 2021-12-16",
"url": "https://access.redhat.com/errata/RHSA-2021:5141"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5186 vom 2021-12-17",
"url": "https://access.redhat.com/errata/RHSA-2021:5186"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5183 vom 2021-12-17",
"url": "https://access.redhat.com/errata/RHSA-2021:5183"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5184 vom 2021-12-17",
"url": "https://access.redhat.com/errata/RHSA-2021:5184"
},
{
"category": "external",
"summary": "Siemens Security Advisory SSA-714170 vom 2021-12-16",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-714170.pdf"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527372 vom 2021-12-17",
"url": "https://www.ibm.com/support/pages/node/6527372"
},
{
"category": "external",
"summary": "Atlassian Security Advisory - Log4j",
"url": "https://confluence.atlassian.com/security/multiple-products-security-advisory-log4j-vulnerable-to-remote-code-execution-cve-2021-44228-1103069934.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527226 vom 2021-12-17",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-some-features-of-ibm-db2-on-openshift-and-ibm-db2-and-db2-warehouse-on-cloud-pak-for-data-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527322 vom 2021-12-17",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-db2-warehouse-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527096 vom 2021-12-17",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-log4jshell-vulnerability-affects-ibm-spss-modeler-cve-2021-44228/"
},
{
"category": "external",
"summary": "Hitachi Vulnerability Information HITACHI-SEC-2021-147 vom 2021-12-17",
"url": "https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2021-147/index.html"
},
{
"category": "external",
"summary": "Palo Alto Networks Security Advisory PAN-184592 vom 2021-12-17",
"url": "https://security.paloaltonetworks.com/CVE-2021-44228"
},
{
"category": "external",
"summary": "Log4j Vulnerabilities Impact On Oracle E-Business Suite Analysis",
"url": "https://www.integrigy.com/security-resources/log4j-vulnerabilities-impact-oracle-e-business-suite-analysis"
},
{
"category": "external",
"summary": "Tibco Apache Log4J Vulnerability Daily Update",
"url": "https://www.tibco.com/support/notices/2021/12/apache-log4j-vulnerability-update-archive-6"
},
{
"category": "external",
"summary": "Avaya Product Security Apache Log4J Vulnerability vom 2021-12-17",
"url": "https://support.avaya.com/helpcenter/getGenericDetails?detailId=1399839287609"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527260 vom 2021-12-20",
"url": "http://www.auscert.org.au/bulletins/ESB-2021.4320"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1731 vom 2021-12-18",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1731.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1553 vom 2021-12-18",
"url": "https://alas.aws.amazon.com/ALAS-2021-1553.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASCORRETTO8-2021-001 vom 2021-12-20",
"url": "https://alas.aws.amazon.com/AL2/ALASCORRETTO8-2021-001.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASJAVA-OPENJDK11-2021-001 vom 2021-12-20",
"url": "https://alas.aws.amazon.com/AL2/ALASJAVA-OPENJDK11-2021-001.html"
},
{
"category": "external",
"summary": "Citrix Security Advisory CTX335705 vom 2021-12-20",
"url": "https://support.citrix.com/article/CTX335705"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527724 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-collaboration-and-deployment-services-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527824 vom 2021-12-17",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-for-space-management-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527824 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-for-space-management-cve-2021-44228-2/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527824 vom 2021-12-19",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-for-space-management-cve-2021-44228-3/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527894 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-snapshot-for-vmware-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527874 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-log4shell-vulnerability-affects-ibm-spss-statistics-desktop-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527828 vom 2021-12-17",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-plus-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527894 vom 2021-12-19",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-snapshot-for-vmware-cve-2021-44228-2/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527836 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-snapshot-on-windows-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527836 vom 2021-12-19",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-snapshot-on-windows-cve-2021-44228-2/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527962 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerablity-in-apache-log4j-may-affect-ibm-tivoli-monitoring-installed-websphere-application-server-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6528108 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-scale-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527762 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spss-analytic-server-cve-2021-44228/"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-004 vom 2021-12-18",
"url": "https://alas.aws.amazon.com/AL2022/ALAS-2021-004.html"
},
{
"category": "external",
"summary": "HCL Article KB0095587 vom 2021-12-17",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0095587"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5192-2 vom 2021-12-17",
"url": "https://ubuntu.com/security/notices/USN-5192-2"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527768 vom 2021-12-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-business-automation-workflow-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527924 vom 2021-12-17",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-mq-blockchain-bridge-dependencies-are-vulnerable-to-an-issue-in-apache-log4j-cve-2021-45046/"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20211215-0001 vom 2021-12-20",
"url": "https://security.netapp.com/advisory/ntap-20211215-0001/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6528432 vom 2021-12-21",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-insights-is-vulnerable-to-a-remote-code-execution-vulnerability-in-apache-log4j-2-component-cve-2021-44228/"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20211210-0007 vom 2021-12-20",
"url": "https://security.netapp.com/advisory/ntap-20211210-0007/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6526420 vom 2021-12-22",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-websphere-service-registry-and-repository-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527764 vom 2021-12-22",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-has-been-identified-in-ibm-websphere-application-server-shipped-with-ibm-digital-business-automation-workflow-family-products-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6528846 vom 2021-12-22",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-tivoli-network-manager-ip-edition-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6528678 vom 2021-12-22",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-some-features-of-ibm-db2-cve-2021-4104/"
},
{
"category": "external",
"summary": "Incident Report for F-Secure services",
"url": "https://status.f-secure.com/incidents/sk8vmr0h34pd"
},
{
"category": "external",
"summary": "Apache Log4j 2 Release Notes",
"url": "https://logging.apache.org/log4j/log4j-2.12.3/index.html"
},
{
"category": "external",
"summary": "Apache Log4j2 Advisory",
"url": "https://logging.apache.org/log4j/log4j-2.3.1/index.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6536868 vom 2021-12-23",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-have-been-identified-in-apache-log4j-shipped-with-ibm-tivoli-netcool-omnibus-common-integration-libraries-cve-2021-4104-cve-2021-45046-cve-2021-44228/"
},
{
"category": "external",
"summary": "HCL Article KB0095728 vom 2021-12-22",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0095728"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6536712 vom 2021-12-23",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-informix-dynamic-server-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6527948 vom 2021-12-23",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-netcool-omnibus-8-1-cve-2021-44228/"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1732 vom 2021-12-24",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1732.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1554 vom 2021-12-24",
"url": "https://alas.aws.amazon.com/ALAS-2021-1554.html"
},
{
"category": "external",
"summary": "Hitachi Vulnerability Information HITACHI-SEC-2021-315 vom 2021-12-28",
"url": "https://www.hitachi.co.jp/products/it/storage-solutions/global/sec_info/2021/2021_315.html"
},
{
"category": "external",
"summary": "EMC Security Advisory DSA-2021-274 vom 2022-01-09",
"url": "https://www.dell.com/support/kbdoc/de-de/000194503/dsa-2021-274-dell-emc-data-domain-security-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228"
},
{
"category": "external",
"summary": "EMC Security Advisory DSA-2021-309 vom 2022-01-09",
"url": "https://www.dell.com/support/kbdoc/de-de/000194651/dsa-2021-309-dell-emc-dpa-security-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228"
},
{
"category": "external",
"summary": "EMC Security Advisory DSA-2021-277 vom 2022-01-09",
"url": "https://www.dell.com/support/kbdoc/de-de/000194480/dsa-2021-277-dell-emc-avamar-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228"
},
{
"category": "external",
"summary": "HPE Security Bulletin HPESBGN04215 rev.10 vom 2022-01-08",
"url": "https://support.hpe.com/hpesc/public/docDisplay?elq_mid=17739\u0026elq_cid=67018031\u0026docId=hpesbgn04215en_us"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6539444 vom 2022-01-11",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-operational-decision-manager-cve-2021-44228/"
},
{
"category": "external",
"summary": "SAP Security Note 3130521 vom 2022-01-11",
"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=596902035"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0082 vom 2022-01-11",
"url": "https://access.redhat.com/errata/RHSA-2022:0082"
},
{
"category": "external",
"summary": "JobScheduler Vulnerability Release 2.2.1 vom 2022-01-11",
"url": "https://kb.sos-berlin.com/display/PKB/Vulnerability+Release+2.2.1"
},
{
"category": "external",
"summary": "Juniper Security Bulletin JSA11287 vom 2022-01-12",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11287\u0026cat=SIRT_1"
},
{
"category": "external",
"summary": "SoapUI Release 5.6.1",
"url": "https://www.soapui.org/downloads/latest-release/release-history/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6541008 vom 2022-01-15",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-rational-build-forge-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6541258 vom 2022-01-18",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-rational-software-architect-realtime-edition-rsa-rt-is-is-vulnerable-to-arbitrary-code-execution-and-denial-of-service-due-to-apache-log4j-cve-2021-44228-cve-2021-45046-and/"
},
{
"category": "external",
"summary": "Unify Security Advisory Report OBSO-2201-01 vom 2022-01-18",
"url": "https://networks.unify.com/security/advisories/OBSO-2201-01.pdf"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0203 vom 2022-01-20",
"url": "https://access.redhat.com/errata/RHSA-2022:0203"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0216 vom 2022-01-20",
"url": "https://access.redhat.com/errata/RHSA-2022:0216"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0222 vom 2022-01-21",
"url": "https://access.redhat.com/errata/RHSA-2022:0222"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0205 vom 2022-01-20",
"url": "https://access.redhat.com/errata/RHSA-2022:0205"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0223 vom 2022-01-21",
"url": "https://access.redhat.com/errata/RHSA-2022:0223"
},
{
"category": "external",
"summary": "LibreOffice Security Advisory",
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2021-44228/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0296 vom 2022-01-26",
"url": "https://access.redhat.com/errata/RHSA-2022:0296"
},
{
"category": "external",
"summary": "ASC NEO Release Announcement 6.7 vom 2022-01-24",
"url": "https://www.asc.de/partner/pp_Tech_d.php?Reveal_in_Tree=VW1Wc1pXRnpaU0JCYm01dmRXNWpaVzFsYm5RZ1ptOXlJRzVsYnlCVGRXbDBaU0JXTmk0M0lDd2dOVFEwSUd0Q0xDQXlNREl5TFRBeExUSTArSA=="
},
{
"category": "external",
"summary": "IBM Security Bulletin 6553622 vom 2022-02-04",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-informix-dynamic-server-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228-3/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6553626 vom 2022-02-04",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-log4j-vulnerability-cve-2021-44228-in-ibm-informix-dynamic-server-in-cloud-pak-for-data-2/"
},
{
"category": "external",
"summary": "HCL Article KB0097471 vom 2022-05-18",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097471"
},
{
"category": "external",
"summary": "HCL Article KB0097299 vom 2022-03-23",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097299"
},
{
"category": "external",
"summary": "HCL Article KB0097470 vom 2022-03-25",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097470"
},
{
"category": "external",
"summary": "HCL Article KB0096807 vom 2022-03-29",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0096807"
},
{
"category": "external",
"summary": "HCL Article KB0097763 vom 2022-04-06",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097763"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:1296 vom 2022-04-11",
"url": "https://access.redhat.com/errata/RHSA-2022:1296"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:1299 vom 2022-04-11",
"url": "https://access.redhat.com/errata/RHSA-2022:1299"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:1297 vom 2022-04-11",
"url": "https://access.redhat.com/errata/RHSA-2022:1297"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2022-1773 vom 2022-04-19",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1773.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2022-1580 vom 2022-04-19",
"url": "https://alas.aws.amazon.com/ALAS-2022-1580.html"
},
{
"category": "external",
"summary": "HCL Article KB0097650 vom 2022-04-23",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097650"
},
{
"category": "external",
"summary": "HCL Article KB0097639 vom 2022-04-23",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097639"
},
{
"category": "external",
"summary": "AVAYA Security Advisory ASA-2022-001 vom 2022-04-25",
"url": "https://downloads.avaya.com/css/P8/documents/101081576"
},
{
"category": "external",
"summary": "HCL Article KB0097787 vom 2022-04-28",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097787"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2022-1806 vom 2022-06-15",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1806.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2022-1601 vom 2022-06-15",
"url": "https://alas.aws.amazon.com/ALAS-2022-1601.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6602955 vom 2022-07-13",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-content-manager-ondemand-for-multiplatforms-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/"
},
{
"category": "external",
"summary": "HCL Article KB0099131 vom 2022-07-24",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0099131"
},
{
"category": "external",
"summary": "HCL Article KB0099671 vom 2022-07-24",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0099671"
},
{
"category": "external",
"summary": "HCL Article KB0099128 vom 2022-07-24",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0099128"
},
{
"category": "external",
"summary": "HCL Article KB0099667 vom 2022-08-13",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0099667"
},
{
"category": "external",
"summary": "HCL Article KB0099669 vom 2022-08-13",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0099669"
},
{
"category": "external",
"summary": "Kyocera Informationen \u00fcber aktuelle Sicherheitshinweise",
"url": "https://www.kyoceradocumentsolutions.de/de/support/sicherheitsluecken.html"
},
{
"category": "external",
"summary": "HCL Article KB0100505 vom 2022-09-21",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0100505"
}
],
"source_lang": "en-US",
"title": "Apache log4j: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
"tracking": {
"current_release_date": "2022-12-11T23:00:00.000+00:00",
"generator": {
"date": "2024-02-15T16:48:47.325+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.0"
}
},
"id": "WID-SEC-W-2022-0351",
"initial_release_date": "2021-12-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2021-12-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2021-12-12T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Fedora, Elastic, ExtremeNetworks, VMware, Fortinet, Amazon, IBM, Debian, Cisco, HCL und Symantec aufgenommen"
},
{
"date": "2021-12-13T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Siemens, Unify und Juniper aufgenommen"
},
{
"date": "2021-12-14T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Ubuntu, Red Hat, IBM, WIBU-SYSTEMS, Fedora und QNAP aufgenommen"
},
{
"date": "2021-12-15T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von IBM, Red Hat, HCL, Ubuntu, SUSE und Amazon aufgenommen"
},
{
"date": "2021-12-16T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Avaya, Red Hat, Siemens, IBM, HITACHI und Palo Alto Networks aufgenommen"
},
{
"date": "2021-12-19T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von IBM, Amazon, Citrix, HCL und Ubuntu aufgenommen"
},
{
"date": "2021-12-20T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von NetApp und IBM aufgenommen"
},
{
"date": "2021-12-21T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2021-12-22T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von IBM und HCL aufgenommen"
},
{
"date": "2021-12-23T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2021-12-27T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von HITACHI aufgenommen"
},
{
"date": "2022-01-06T23:00:00.000+00:00",
"number": "13",
"summary": "Referenz(en) aufgenommen: CSCWA47351, CSCWA52921, CSCWA54650, CSCWA56230"
},
{
"date": "2022-01-09T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von EMC und HP aufgenommen"
},
{
"date": "2022-01-10T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von IBM und SAP aufgenommen"
},
{
"date": "2022-01-11T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-01-12T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Juniper, SmartBear und SOS GmbH aufgenommen"
},
{
"date": "2022-01-16T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-01-17T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-01-18T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Unify aufgenommen"
},
{
"date": "2022-01-19T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-01-20T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-01-23T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2022-01-26T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat und ASC aufgenommen"
},
{
"date": "2022-02-03T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-03-22T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-03-24T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-03-29T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-04-05T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-04-11T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-04-19T22:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2022-04-24T22:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-04-26T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von AVAYA aufgenommen"
},
{
"date": "2022-04-27T22:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-05-17T22:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-06-16T22:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2022-07-12T22:00:00.000+00:00",
"number": "37",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-07-24T22:00:00.000+00:00",
"number": "38",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-08-14T22:00:00.000+00:00",
"number": "39",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-08-30T22:00:00.000+00:00",
"number": "40",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2022-09-20T22:00:00.000+00:00",
"number": "41",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-12-11T23:00:00.000+00:00",
"number": "42",
"summary": "Neue Updates von Amazon aufgenommen"
}
],
"status": "final",
"version": "42"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "ASC NEO",
"product": {
"name": "ASC NEO",
"product_id": "T021878",
"product_identification_helper": {
"cpe": "cpe:/a:asc:neo:-"
}
}
}
],
"category": "vendor",
"name": "ASC"
},
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Apache Kafka",
"product": {
"name": "Apache Kafka",
"product_id": "T021247",
"product_identification_helper": {
"cpe": "cpe:/a:apache:kafka:-"
}
}
},
{
"category": "product_name",
"name": "Apache Solr",
"product": {
"name": "Apache Solr",
"product_id": "T021248",
"product_identification_helper": {
"cpe": "cpe:/a:apache:solr:-"
}
}
},
{
"category": "product_name",
"name": "Apache Struts",
"product": {
"name": "Apache Struts",
"product_id": "642",
"product_identification_helper": {
"cpe": "cpe:/a:apache:struts:-"
}
}
},
{
"category": "product_name",
"name": "Apache log4j \u003c 2.16.0",
"product": {
"name": "Apache log4j \u003c 2.16.0",
"product_id": "T021308",
"product_identification_helper": {
"cpe": "cpe:/a:apache:log4j:2.16.0"
}
}
}
],
"category": "vendor",
"name": "Apache"
},
{
"branches": [
{
"category": "product_name",
"name": "Atlassian Bamboo",
"product": {
"name": "Atlassian Bamboo",
"product_id": "T021265",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bamboo:-"
}
}
},
{
"category": "product_name",
"name": "Atlassian Bitbucket",
"product": {
"name": "Atlassian Bitbucket",
"product_id": "T021356",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:-"
}
}
},
{
"category": "product_name",
"name": "Atlassian Confluence",
"product": {
"name": "Atlassian Confluence",
"product_id": "T016816",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:confluence:-"
}
}
},
{
"category": "product_name",
"name": "Atlassian Crucible",
"product": {
"name": "Atlassian Crucible",
"product_id": "T021266",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:crucible:-"
}
}
},
{
"category": "product_name",
"name": "Atlassian Fisheye",
"product": {
"name": "Atlassian Fisheye",
"product_id": "T021267",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:fisheye:-"
}
}
},
{
"category": "product_name",
"name": "Atlassian Jira Software",
"product": {
"name": "Atlassian Jira Software",
"product_id": "T015027",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:jira_software:-"
}
}
}
],
"category": "vendor",
"name": "Atlassian"
},
{
"branches": [
{
"category": "product_name",
"name": "Avaya Analytics",
"product": {
"name": "Avaya Analytics",
"product_id": "T021375",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:analytics:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Application Enablement Services",
"product": {
"name": "Avaya Aura Application Enablement Services",
"product_id": "T015516",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_application_enablement_services:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Device Services",
"product": {
"name": "Avaya Aura Device Services",
"product_id": "T015517",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_device_services:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Experience Portal",
"product": {
"name": "Avaya Aura Experience Portal",
"product_id": "T015519",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_experience_portal:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Media Server",
"product": {
"name": "Avaya Aura Media Server",
"product_id": "1017",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:media_server:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Session Manager",
"product": {
"name": "Avaya Aura Session Manager",
"product_id": "T015127",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:session_manager:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura System Manager",
"product": {
"name": "Avaya Aura System Manager",
"product_id": "T015518",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_system_manager:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Web Gateway",
"product": {
"name": "Avaya Aura Web Gateway",
"product_id": "T021376",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_web_gateway:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Breeze Platform",
"product": {
"name": "Avaya Breeze Platform",
"product_id": "T015823",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:breeze_platform:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Oceana",
"product": {
"name": "Avaya Oceana",
"product_id": "T016589",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:oceana:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Session Border Controller",
"product": {
"name": "Avaya Session Border Controller",
"product_id": "T015520",
"product_identification_helper": {
"cpe": "cpe:/h:avaya:session_border_controller:-"
}
}
},
{
"category": "product_name",
"name": "Avaya one-X",
"product": {
"name": "Avaya one-X",
"product_id": "1024",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:one-x:-"
}
}
}
],
"category": "vendor",
"name": "Avaya"
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Application Policy Infrastructure Controller",
"product": {
"name": "Cisco Application Policy Infrastructure Controller",
"product_id": "778219",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:application_policy_infrastructure_controller:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Emergency Responder (ER)",
"product": {
"name": "Cisco Emergency Responder (ER)",
"product_id": "2040",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:emergency_responder:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Finesse",
"product": {
"name": "Cisco Finesse",
"product_id": "199167",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:finesse:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Firepower Dashboard",
"product": {
"name": "Cisco Firepower Dashboard",
"product_id": "T011337",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:firepower:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Identity Services Engine (ISE)",
"product": {
"name": "Cisco Identity Services Engine (ISE)",
"product_id": "T000612",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:identity_services_engine_software:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Integrated Management Controller",
"product": {
"name": "Cisco Integrated Management Controller",
"product_id": "T014392",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:integrated_management_controller:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Network Services Orchestrator",
"product": {
"name": "Cisco Network Services Orchestrator",
"product_id": "T021358",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:network_services_orchestrator:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Nexus Dashboard",
"product": {
"name": "Cisco Nexus Dashboard",
"product_id": "T021249",
"product_identification_helper": {
"cpe": "cpe:/h:cisco:nexus:::dashboard"
}
}
},
{
"category": "product_name",
"name": "Cisco Nexus Insights",
"product": {
"name": "Cisco Nexus Insights",
"product_id": "T021357",
"product_identification_helper": {
"cpe": "cpe:/h:cisco:nexus:insights"
}
}
}
],
"category": "product_name",
"name": "Nexus"
},
{
"category": "product_name",
"name": "Cisco SD-WAN vManage",
"product": {
"name": "Cisco SD-WAN vManage",
"product_id": "T018812",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:sd_wan:vmanage"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Unified Communications Manager (CUCM) Session Management Edition",
"product": {
"name": "Cisco Unified Communications Manager (CUCM) Session Management Edition",
"product_id": "T016315",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_communications_manager:session_management_edition"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Communications Manager (CUCM) Cloud",
"product": {
"name": "Cisco Unified Communications Manager (CUCM) Cloud",
"product_id": "T021250",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_communications_manager:::cloud"
}
}
}
],
"category": "product_name",
"name": "Unified Communications Manager (CUCM)"
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Unified Computing System (UCS) Director",
"product": {
"name": "Cisco Unified Computing System (UCS) Director",
"product_id": "T017032",
"product_identification_helper": {
"cpe": "cpe:/h:cisco:unified_computing_system:director_6.7.4.1"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Computing System (UCS) Central Software",
"product": {
"name": "Cisco Unified Computing System (UCS) Central Software",
"product_id": "T021359",
"product_identification_helper": {
"cpe": "cpe:/h:cisco:unified_computing_system:central_software"
}
}
}
],
"category": "product_name",
"name": "Unified Computing System (UCS)"
},
{
"category": "product_name",
"name": "Cisco Unified Contact Center Enterprise",
"product": {
"name": "Cisco Unified Contact Center Enterprise",
"product_id": "2143",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_contact_center_enterprise:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Contact Center Express (UCCX)",
"product": {
"name": "Cisco Unified Contact Center Express (UCCX)",
"product_id": "915286",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_contact_center_express:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Intelligence Center",
"product": {
"name": "Cisco Unified Intelligence Center",
"product_id": "T018811",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_intelligence_center:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Intelligent Contact Manager (ICM)",
"product": {
"name": "Cisco Unified Intelligent Contact Manager (ICM)",
"product_id": "69412",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_intelligent_contact_management_enterprise:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Unity Connection",
"product": {
"name": "Cisco Unity Connection",
"product_id": "T002044",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unity_connection:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Video Surveillance Operations Manager",
"product": {
"name": "Cisco Video Surveillance Operations Manager",
"product_id": "196088",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:video_surveillance_operations_manager:-"
}
}
},
{
"category": "product_name",
"name": "Cisco WebEx Cloud-Connected UC",
"product": {
"name": "Cisco WebEx Cloud-Connected UC",
"product_id": "T021251",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:webex:::cloud-connected_uc"
}
}
},
{
"category": "product_name",
"name": "Cisco WebEx Meetings Server",
"product": {
"name": "Cisco WebEx Meetings Server",
"product_id": "T001160",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:webex_meetings_server:-"
}
}
}
],
"category": "vendor",
"name": "Cisco"
},
{
"branches": [
{
"category": "product_name",
"name": "Citrix Systems Virtual Apps and Desktops",
"product": {
"name": "Citrix Systems Virtual Apps and Desktops",
"product_id": "876876",
"product_identification_helper": {
"cpe": "cpe:/a:citrix:virtual_apps_and_desktops:-::~~-~~~"
}
}
}
],
"category": "vendor",
"name": "Citrix Systems"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Dell Data Protection Advisor",
"product": {
"name": "Dell Data Protection Advisor",
"product_id": "T021498",
"product_identification_helper": {
"cpe": "cpe:/a:dell:data_protection_advisor:-"
}
}
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "EMC Avamar",
"product": {
"name": "EMC Avamar",
"product_id": "T014381",
"product_identification_helper": {
"cpe": "cpe:/a:emc:avamar:-"
}
}
},
{
"category": "product_name",
"name": "EMC Data Domain",
"product": {
"name": "EMC Data Domain",
"product_id": "T021496",
"product_identification_helper": {
"cpe": "cpe:/o:emc:data_domain:-"
}
}
},
{
"category": "product_name",
"name": "EMC Data Domain OS",
"product": {
"name": "EMC Data Domain OS",
"product_id": "T006099",
"product_identification_helper": {
"cpe": "cpe:/o:emc:data_domain_os:-"
}
}
}
],
"category": "vendor",
"name": "EMC"
},
{
"branches": [
{
"category": "product_name",
"name": "F-Secure Policy Manager",
"product": {
"name": "F-Secure Policy Manager",
"product_id": "T021242",
"product_identification_helper": {
"cpe": "cpe:/a:f-secure:policy_manager:-"
}
}
}
],
"category": "vendor",
"name": "F-Secure"
},
{
"branches": [
{
"category": "product_name",
"name": "HCL Commerce",
"product": {
"name": "HCL Commerce",
"product_id": "T019293",
"product_identification_helper": {
"cpe": "cpe:/a:hcltechsw:commerce:-"
}
}
},
{
"category": "product_name",
"name": "HCL Domino",
"product": {
"name": "HCL Domino",
"product_id": "777623",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:domino:-"
}
}
}
],
"category": "vendor",
"name": "HCL"
},
{
"branches": [
{
"category": "product_name",
"name": "Hitachi Storage",
"product": {
"name": "Hitachi Storage",
"product_id": "T009295",
"product_identification_helper": {
"cpe": "cpe:/h:hitachi:storage:-"
}
}
}
],
"category": "vendor",
"name": "Hitachi"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM Business Automation Workflow",
"product": {
"name": "IBM Business Automation Workflow",
"product_id": "T019704",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:business_automation_workflow:-"
}
}
},
{
"category": "product_name",
"name": "IBM Content Manager",
"product": {
"name": "IBM Content Manager",
"product_id": "T023838",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:content_manager:-"
}
}
},
{
"category": "product_name",
"name": "IBM DB2",
"product": {
"name": "IBM DB2",
"product_id": "5104",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:db2:-"
}
}
},
{
"category": "product_name",
"name": "IBM InfoSphere Information Server",
"product": {
"name": "IBM InfoSphere Information Server",
"product_id": "T019995",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:infosphere_information_server:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "IBM Informix",
"product": {
"name": "IBM Informix",
"product_id": "5121",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:informix:-"
}
}
},
{
"category": "product_name",
"name": "IBM Informix Dynamic Server",
"product": {
"name": "IBM Informix Dynamic Server",
"product_id": "T021953",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:informix:::dynamic_server"
}
}
}
],
"category": "product_name",
"name": "Informix"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM MQ 9.1",
"product": {
"name": "IBM MQ 9.1",
"product_id": "T014765",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:9.1"
}
}
},
{
"category": "product_name",
"name": "IBM MQ 9.2",
"product": {
"name": "IBM MQ 9.2",
"product_id": "T016984",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:9.2"
}
}
}
],
"category": "product_name",
"name": "MQ"
},
{
"category": "product_name",
"name": "IBM Operational Decision Manager",
"product": {
"name": "IBM Operational Decision Manager",
"product_id": "T005180",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:operational_decision_manager:-"
}
}
},
{
"category": "product_name",
"name": "IBM Rational Software Architect",
"product": {
"name": "IBM Rational Software Architect",
"product_id": "T005181",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_software_architect:-"
}
}
},
{
"category": "product_name",
"name": "IBM SPSS",
"product": {
"name": "IBM SPSS",
"product_id": "T013570",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spss:-"
}
}
},
{
"category": "product_name",
"name": "IBM Security Guardium",
"product": {
"name": "IBM Security Guardium",
"product_id": "T021345",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:security_guardium:-"
}
}
},
{
"category": "product_name",
"name": "IBM Spectrum Protect",
"product": {
"name": "IBM Spectrum Protect",
"product_id": "T013661",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spectrum_protect:-"
}
}
},
{
"category": "product_name",
"name": "IBM Spectrum Scale",
"product": {
"name": "IBM Spectrum Scale",
"product_id": "T019402",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spectrum_scale:-"
}
}
},
{
"category": "product_name",
"name": "IBM Tivoli Monitoring",
"product": {
"name": "IBM Tivoli Monitoring",
"product_id": "T011128",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:tivoli_monitoring:-"
}
}
},
{
"category": "product_name",
"name": "IBM Tivoli Netcool/OMNIbus",
"product": {
"name": "IBM Tivoli Netcool/OMNIbus",
"product_id": "T004181",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:tivoli_netcool%2fomnibus:-"
}
}
},
{
"category": "product_name",
"name": "IBM WebSphere Application Server",
"product": {
"name": "IBM WebSphere Application Server",
"product_id": "5198",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:websphere_application_server:-"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Juniper Junos Space",
"product": {
"name": "Juniper Junos Space",
"product_id": "T003343",
"product_identification_helper": {
"cpe": "cpe:/a:juniper:junos_space:-"
}
}
}
],
"category": "vendor",
"name": "Juniper"
},
{
"branches": [
{
"category": "product_name",
"name": "Kyocera Printer",
"product": {
"name": "Kyocera Printer",
"product_id": "T015471",
"product_identification_helper": {
"cpe": "cpe:/h:kyocera:printer:-"
}
}
}
],
"category": "vendor",
"name": "Kyocera"
},
{
"branches": [
{
"category": "product_name",
"name": "NetApp ActiveIQ Unified Manager",
"product": {
"name": "NetApp ActiveIQ Unified Manager",
"product_id": "T016960",
"product_identification_helper": {
"cpe": "cpe:/a:netapp:active_iq_unified_manager:-"
}
}
},
{
"category": "product_name",
"name": "NetApp Data ONTAP Tools for VMware vSphere",
"product": {
"name": "NetApp Data ONTAP Tools for VMware vSphere",
"product_id": "T021401",
"product_identification_helper": {
"cpe": "cpe:/a:netapp:data_ontap:tools_for_vmware_vsphere"
}
}
}
],
"category": "vendor",
"name": "NetApp"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source Elasticsearch",
"product": {
"name": "Open Source Elasticsearch",
"product_id": "T010062",
"product_identification_helper": {
"cpe": "cpe:/a:elasticsearch:elasticsearch:-"
}
}
},
{
"category": "product_name",
"name": "Open Source LogStash",
"product": {
"name": "Open Source LogStash",
"product_id": "T021264",
"product_identification_helper": {
"cpe": "cpe:/a:elasticsearch:logstash:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "PaloAlto Networks PAN-OS",
"product": {
"name": "PaloAlto Networks PAN-OS",
"product_id": "T012790",
"product_identification_helper": {
"cpe": "cpe:/o:paloaltonetworks:pan-os:-"
}
}
}
],
"category": "vendor",
"name": "PaloAlto Networks"
},
{
"branches": [
{
"category": "product_name",
"name": "QNAP NAS",
"product": {
"name": "QNAP NAS",
"product_id": "T017100",
"product_identification_helper": {
"cpe": "cpe:/h:qnap:nas:-"
}
}
}
],
"category": "vendor",
"name": "QNAP"
},
{
"branches": [
{
"category": "product_name",
"name": "RSA SecurID Authentication Manager",
"product": {
"name": "RSA SecurID Authentication Manager",
"product_id": "T021245",
"product_identification_helper": {
"cpe": "cpe:/h:rsa:securid:::authentication_manager"
}
}
}
],
"category": "vendor",
"name": "RSA"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss A-MQ",
"product": {
"name": "Red Hat JBoss A-MQ",
"product_id": "T015887",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_amq:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform",
"product_id": "T003085",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift",
"product": {
"name": "Red Hat OpenShift",
"product_id": "367115",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenStack",
"product": {
"name": "Red Hat OpenStack",
"product_id": "T003522",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat Process Automation Manager",
"product": {
"name": "Red Hat Process Automation Manager",
"product_id": "T021270",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:process_automation_manager:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SAP Software",
"product": {
"name": "SAP Software",
"product_id": "T016476",
"product_identification_helper": {
"cpe": "cpe:/a:sap:sap:-"
}
}
}
],
"category": "vendor",
"name": "SAP"
},
{
"branches": [
{
"category": "product_name",
"name": "SOS GmbH JobScheduler",
"product": {
"name": "SOS GmbH JobScheduler",
"product_id": "T021263",
"product_identification_helper": {
"cpe": "cpe:/a:sos_gmbh:jobscheduler:-"
}
}
}
],
"category": "vendor",
"name": "SOS GmbH"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Siemens SIMATIC WinCC \u003c V7.4 SP1",
"product": {
"name": "Siemens SIMATIC WinCC \u003c V7.4 SP1",
"product_id": "T021273",
"product_identification_helper": {
"cpe": "cpe:/a:siemens:simatic_wincc:v7.4_sp1"
}
}
},
{
"category": "product_name",
"name": "Siemens SPPA-T3000",
"product": {
"name": "Siemens SPPA-T3000",
"product_id": "668076",
"product_identification_helper": {
"cpe": "cpe:/a:siemens:sppa-t3000_application_server:-"
}
}
}
],
"category": "vendor",
"name": "Siemens"
},
{
"branches": [
{
"category": "product_name",
"name": "SmartBear SoapUI",
"product": {
"name": "SmartBear SoapUI",
"product_id": "T021577",
"product_identification_helper": {
"cpe": "cpe:/a:smartbear:soapui:-"
}
}
}
],
"category": "vendor",
"name": "SmartBear"
},
{
"branches": [
{
"category": "product_name",
"name": "Splunk Splunk Enterprise",
"product": {
"name": "Splunk Splunk Enterprise",
"product_id": "T008911",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:-"
}
}
}
],
"category": "vendor",
"name": "Splunk"
},
{
"branches": [
{
"category": "product_name",
"name": "Symantec Endpoint Protection Manager",
"product": {
"name": "Symantec Endpoint Protection Manager",
"product_id": "T021244",
"product_identification_helper": {
"cpe": "cpe:/a:symantec:endpoint_protection:::manager"
}
}
}
],
"category": "vendor",
"name": "Symantec"
},
{
"branches": [
{
"category": "product_name",
"name": "TIBCO Spotfire",
"product": {
"name": "TIBCO Spotfire",
"product_id": "T009185",
"product_identification_helper": {
"cpe": "cpe:/a:tibco:spotfire:-"
}
}
},
{
"category": "product_name",
"name": "TIBCO Spotfire Statistics Services",
"product": {
"name": "TIBCO Spotfire Statistics Services",
"product_id": "T021366",
"product_identification_helper": {
"cpe": "cpe:/a:tibco:spotfire_statistics_services:-"
}
}
}
],
"category": "vendor",
"name": "TIBCO"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"category": "product_name",
"name": "Unify OpenScape 4000",
"product": {
"name": "Unify OpenScape 4000",
"product_id": "T018011",
"product_identification_helper": {
"cpe": "cpe:/h:unify:openscape_4000:-"
}
}
},
{
"category": "product_name",
"name": "Unify OpenScape Contact Center",
"product": {
"name": "Unify OpenScape Contact Center",
"product_id": "T008876",
"product_identification_helper": {
"cpe": "cpe:/a:unify:openscape_contact_center:-"
}
}
},
{
"category": "product_name",
"name": "Unify OpenScape Deployment Service (DLS)",
"product": {
"name": "Unify OpenScape Deployment Service (DLS)",
"product_id": "T015711",
"product_identification_helper": {
"cpe": "cpe:/a:unify:openscape_deployment_service:-"
}
}
},
{
"category": "product_name",
"name": "Unify OpenScape Mediaserver",
"product": {
"name": "Unify OpenScape Mediaserver",
"product_id": "T018253",
"product_identification_helper": {
"cpe": "cpe:/a:unify:openscape_mediaserver:-"
}
}
},
{
"category": "product_name",
"name": "Unify OpenScape UC Application \u003c V10.3.10",
"product": {
"name": "Unify OpenScape UC Application \u003c V10.3.10",
"product_id": "T021274",
"product_identification_helper": {
"cpe": "cpe:/a:unify:openscape_uc_application:v10.3.10"
}
}
},
{
"category": "product_name",
"name": "Unify OpenScape Voice",
"product": {
"name": "Unify OpenScape Voice",
"product_id": "T008873",
"product_identification_helper": {
"cpe": "cpe:/a:unify:openscape_voice:-"
}
}
},
{
"category": "product_name",
"name": "Unify OpenScape Xpert",
"product": {
"name": "Unify OpenScape Xpert",
"product_id": "T018014",
"product_identification_helper": {
"cpe": "cpe:/h:unify:openscape_xpert:-"
}
}
}
],
"category": "vendor",
"name": "Unify"
},
{
"branches": [
{
"category": "product_name",
"name": "VMware Carbon Black Cloud Workload",
"product": {
"name": "VMware Carbon Black Cloud Workload",
"product_id": "950382",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:carbon_black_cloud_workload:-"
}
}
},
{
"category": "product_name",
"name": "VMware Cloud Director Object Storage Extension",
"product": {
"name": "VMware Cloud Director Object Storage Extension",
"product_id": "T021402",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:cloud_director:object_storage_extension"
}
}
},
{
"category": "product_name",
"name": "VMware Cloud Foundation",
"product": {
"name": "VMware Cloud Foundation",
"product_id": "658718",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:cloud_foundation:-"
}
}
},
{
"category": "product_name",
"name": "VMware Horizon",
"product": {
"name": "VMware Horizon",
"product_id": "T021252",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:horizon:-"
}
}
},
{
"category": "product_name",
"name": "VMware Identity Manager",
"product": {
"name": "VMware Identity Manager",
"product_id": "T021253",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:identity_manger:-"
}
}
},
{
"category": "product_name",
"name": "VMware NSX Data Center for vSphere",
"product": {
"name": "VMware NSX Data Center for vSphere",
"product_id": "393634",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:nsx_data_center:-"
}
}
},
{
"category": "product_name",
"name": "VMware SD-WAN by VeloCloud",
"product": {
"name": "VMware SD-WAN by VeloCloud",
"product_id": "T021403",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:sd-wan_by_velocloud:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "VMware Workspace One Access Connector",
"product": {
"name": "VMware Workspace One Access Connector",
"product_id": "T021254",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:workspace_one_access:::connector"
}
}
},
{
"category": "product_name",
"name": "VMware Workspace One Access",
"product": {
"name": "VMware Workspace One Access",
"product_id": "T021255",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:workspace_one_access:-"
}
}
}
],
"category": "product_name",
"name": "Workspace One Access"
},
{
"category": "product_name",
"name": "VMware vCenter Server",
"product": {
"name": "VMware vCenter Server",
"product_id": "T012302",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:vcenter_server:-"
}
}
},
{
"category": "product_name",
"name": "VMware vRealize Log Insight",
"product": {
"name": "VMware vRealize Log Insight",
"product_id": "T021256",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:vcenter_log_insight:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "VMware vRealize Operations",
"product": {
"name": "VMware vRealize Operations",
"product_id": "T021257",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:vrealize_operations:-"
}
}
},
{
"category": "product_name",
"name": "VMware vRealize Operations Cloud Proxy",
"product": {
"name": "VMware vRealize Operations Cloud Proxy",
"product_id": "T021404",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:vrealize_operations:::cloud_proxy"
}
}
}
],
"category": "product_name",
"name": "vRealize Operations"
},
{
"category": "product_name",
"name": "VMware vRealize Suite Lifecycle Manager",
"product": {
"name": "VMware vRealize Suite Lifecycle Manager",
"product_id": "T021258",
"product_identification_helper": {
"cpe": "cpe:/a:vmware:vrealize_suite_lifecycle_manager:-"
}
}
}
],
"category": "vendor",
"name": "VMware"
},
{
"branches": [
{
"category": "product_name",
"name": "VMware Tanzu Spring Boot",
"product": {
"name": "VMware Tanzu Spring Boot",
"product_id": "T021262",
"product_identification_helper": {
"cpe": "cpe:/a:vmware_tanzu:spring_boot:-"
}
}
}
],
"category": "vendor",
"name": "VMware Tanzu"
},
{
"branches": [
{
"category": "product_name",
"name": "Wibu-Systems CodeMeter",
"product": {
"name": "Wibu-Systems CodeMeter",
"product_id": "812997",
"product_identification_helper": {
"cpe": "cpe:/a:wibu:codemeter:-"
}
}
}
],
"category": "vendor",
"name": "Wibu-Systems"
},
{
"branches": [
{
"category": "product_name",
"name": "TIBCO Managed File Transfer",
"product": {
"name": "TIBCO Managed File Transfer",
"product_id": "T021367",
"product_identification_helper": {
"cpe": "cpe:/a:tibco:managed_file_transfer_internet_server:-"
}
}
}
],
"category": "vendor",
"name": "tibco"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-44228",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Apache log4j. Die Schwachstelle ist auf eine fehlende Bereinigung von Benutzereingaben zur\u00fcckzuf\u00fchren und ist mithilfe eines manipulierten Strings, welcher einen \"JNDI lookup\" besitzt, anzugreifen. Dadurch wird ein Request zu einem malizi\u00f6sen Server ausgel\u00f6st, der im JNDI lookup definiert ist. Wenn die Antwort einen Pfad zu einer schadhaften Java Klasse besitzt, wird diese in den Prozess des log4j Servers injiziert. Ein entfernter, anonymer Angreifer kann diese Schwachstelle z.B. durch das Senden eines manipulierten Headers ausnutzen, um beliebigen Programmcode auszuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T001160",
"T008876",
"T008873",
"T003343",
"T016816",
"T011128",
"T008911",
"T013661",
"876876",
"T021577",
"398363",
"950382",
"393634",
"T015711",
"2040",
"T021345",
"642",
"2951",
"T019704",
"T003522",
"812997",
"T016315",
"T019995",
"T021953",
"T009185",
"T021270",
"T003085",
"T014765",
"T017100",
"T019402",
"T000126",
"367115",
"778219",
"T009295",
"915286",
"T015887",
"T015127",
"T019293",
"T015520",
"T017032",
"658718",
"T021258",
"1017",
"T021257",
"T014392",
"T021256",
"T021498",
"T021251",
"T021250",
"T021255",
"T021376",
"T021254",
"T021375",
"T021496",
"T021253",
"T006099",
"T021252",
"69412",
"T015519",
"5198",
"T015518",
"T015517",
"T015516",
"T010062",
"T023838",
"T016960",
"T018011",
"T018253",
"T013570",
"668076",
"T018014",
"T015471",
"T014381",
"T021267",
"T002207",
"T018811",
"1024",
"T018812",
"5104",
"T021262",
"T004181",
"196088",
"777623",
"T021266",
"T002044",
"T021265",
"T021264",
"T021263",
"5121",
"67646",
"T015823",
"T015027",
"T012790",
"T021358",
"T021357",
"T021356",
"T000612",
"T021878",
"T021359",
"T005181",
"T005180",
"199167",
"T011337",
"T012302",
"2143",
"T016589",
"T016984",
"T021248",
"T021402",
"T021247",
"T021401",
"T021367",
"T021245",
"T021366",
"T021404",
"T021249",
"T021403",
"T021244",
"T021242"
]
},
"release_date": "2021-12-09T23:00:00Z",
"title": "CVE-2021-44228"
}
]
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.