Where Can I find Information on CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832?
Article ID: 285030
Updated On:
Products
Carbon Black App Control (formerly Cb Protection)
Carbon Black Cloud Endpoint Standard (formerly Cb Defense)
Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter)
Carbon Black EDR (formerly Cb Response)
Carbon Black Hosted EDR (formerly Cb Response Cloud)
Issue/Introduction
Where can I find information on CVE-2021-44228 (Log4Shell - Log4j Remote Code Execution) and subsequent CVE-2021-45046, CVE-2021-45105, CVE-2021-44832?
Environment
- App Control Server: All Supported Versions
- EDR Server: 7.3.0 to 7.6.0
- Carbon Black Cloud: All Supported Versions
Resolution
- Vulnerability information and product-specific guidance: Log4Shell - Log4j Remote Code Execution (CVE-2021-44228)
- Mitigations for specific components of VMware Carbon Black products:
- EDR Server
- 7.6.2 and Higher which have the mitigation for this vulnerability
- Workload Appliance
- Appliance Update: VMware Carbon Black Cloud Workload 1.1.2 Release Notes
- Upgrade to the 1.1.2 and Higher Workloads appliance for the mitigation to this vulnerability
- Carbon Black Cloud Services
- Also see Broadcom's Security Advisory VMSA-2021-0028
- EDR Server
Additional Information
- EDR
- EDR sensors do not use Log4j and are therefore not affected.
- Are there threat intel feeds for EDR? EEDR and EDR: Are There Threat Intel Feeds for CVE-2021-44228 (Log4j)?
- App Control
- App Control does not utilize Log4j, please see this link for more details App Control: Is Application Control affected by the LOG4J vulnerability?
- Carbon Black Cloud
- Carbon Black Cloud sensors do not use Log4j and are not affected.
- Are there threat intel feeds for EEDR? EEDR and EDR: Are There Threat Intel Feeds for CVE-2021-44228 (Log4j)?
Feedback
Yes
No
Powered by
