We advise readers to follow the provided source links for more detailed information. Some products do not have clear version numbers, in which case the Version field is empty. If Status is set to 'Fix', the Version field indicates the version(s) in which the fix was introduced. If Status field is set to 'Vulnerable', the Version field indicates vulnerable version(s) if these version numbers are known to us. The Version relates to the Status column. Software is under investigation whether it is vulnerable or not. Software is NOT vulnerable for CVE-2021-xxx. Software is vulnerable but mitigation steps are available. Software contains a fix for CVE-2021-xxx. The following status labels are in use: Status CVE-2021-xxx If you find updates or mistakes, please contribute by creating a Pull Request. You are advised to review the links provided for available updates. However, we do not have the capacity to monitor all software for updates/fixes. Please check the software list parser tool to generate a CSV or JSON on your own.ĭisclaimer: _We aim to provide as the information as accurately as possible with the resources available to us. Daily CSV/JSON releasesĭaily releases of this software list are listed, including CSV and JSON files, in the releases overview. Normally we would update the HIGH/HIGH advisory for vulnerable software packages, however due to the extensive amounts of expected updates we have created a list of known vulnerable software in the software directory. NCSC-NL has published a HIGH/HIGH advisory for the Log4j vulnerability. NCSC-NL has concluded that the new vulnerability (CVE-2021-44832) has a low chance of being exploited and will therefore exclude this vulnerability from this GitHub. These occurrences are not registered in this overview. Please note that this vulnerability may also occur in custom software developed within your organisation. Software and firmware updates and upgrades maintain network. Listed software is paired with specific information regarding which version contains the security fixes and which software still requires fixes. Available as a separate subscription service for Windows and Mac OS endpoints. NCSC-NL and partners are attempting to maintain a list of all known vulnerable and not vulnerable software. This directory contains an overview of software (un)affected by the Log4shell vulnerabilities. Overview of software (un)affected by Log4j
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |