AWS
.png)
公告網址 https://aws.amazon.com/tw/security/security-bulletins/AWS-2021-006/
資安弱點 CVE-2021-44228、CVE-2021-45046
類型 雲端服務
解決方案名稱
Amazon API Gateway、Amazon AppFlow、AWS AppSync、AWS Certificate Manager、Amazon Chime、Amazon Athena、Amazon Cloud Directory、Amazon CloudFront、AWS CloudHSM、Amazon CloudWatch、AWS CodePipeline、AWS CodeBuild、Amazon Cognito、Amazon Connect、Amazon Corretto、Amazon DocumentDB、Amazon DynamoDB、Amazon EC2、Amazon ECS、Amazon EKS、AWS Elastic Beanstalk、Amazon ElastiCache、AWS Elastic Load Balancing、Amazon EMR、Amazon EventBridge、AWS Fargate、Amazon ECR Public / Amazon ECR、Amazon Fraud Detector、AWS Glue、AWS Greengrass、Amazon Inspector / Inspector Classic、AWS IoT SiteWise Edge、Amazon Kendra、Amazon Keyspaces (適用於Apache Cassandra)、Amazon Kinesis / Kinesis Data Analytics / Kinesis Data Streams、AWS Key Management Service(KMS)、AWS Lake Formation、AWS Lambda、Amazon Lex、Amazon Linux、Amazon Lookout for Equipment、Amazon Macie、Amazon Macie Classic、AMS、Amazon Managed Streaming for Apache Kafka (MSK)、Amazon Managed Workflows for Apache Airflow (MWAA)、Amazon MemoryDB for Redis、Amazon Monitron、Amazon MQ、Amazon Neptune、Amazon OpenSearch Service、Amazon Pinpoint、Amazon Polly、Amazon QuickSight、Amazon Redshift、Amazon Rekognition、AWS Secrets Manager、Amazon Simple Notification Service (SNS)、Amazon Simple Queue Service (SQS)、Amazon Simple Workflow Service (SWF)、Amazon Single Sign-On、AWS Service Catalog、AWS Systems Manager、Amazon Timestream、Amazon VPC、Amazon RDS / RDS Oracle、Amazon Route53、Amazon S3、Amazon SageMaker、AWS SDK、AWS Step Functions、AWS Textract、AWS Web Application Firewall (WAF)、Amazon WorkSpaces/AppStream 2.0、NICE
Dell
資安弱點 CVE-2021-44228
類型 企業內部建置產品
解決方案名稱
Dell EMC Avamar、Dell EMC BSN Controller Node、Dell EMC Cloud Disaster Recovery、Dell EMC Data Protection Advisor、Dell EMC Data Protection Central、Dell EMC Data Protection Search、Dell EMC ECS、Dell EMC Enterprise Storage Analytics for vRealize Operations、Dell EMC Integrated System for Azure Stack HCI、Dell EMC Integrated System for Microsoft Azure Stack Hub、Dell EMC Metro Node、Dell EMC NetWorker、Dell EMC NetWorker VE、Dell EMC Networking Virtual Edge Platform with VersaOS、Dell Open Management Enterprise – Modular、Dell EMC OpenManage Enterprise Services、Dell EMC OpenManage Enterprise、Dell EMC PowerFlex Appliance、Dell EMC PowerFlex Software (Storage Data Server)、Dell EMC PowerFlex Rack、Dell EMC PowerProtect Data Manager、Dell EMC PowerProtect DP Series Appliance (iDPA)、Dell EMC PowerStore、Dell EMC RecoverPoint、Dell EMC Ruckus SmartZone 100 Controller、Dell EMC Ruckus SmartZone 300 Controller、Dell EMC Ruckus Virtual Software、Dell EMC SRM vApp、Dell EMC Streaming Data Platform、Dell EMC VxRail、Dell EMC Unity、Dell EMC XC、APEX Console、APEX Data Storage Services、Cloud IQ、Connectrix (Cisco MDS DCNM)、Connectrix B-Series SANnav、Data Domain OS、Enterprise Hybrid Cloud、Secure Connect Gateway (SCG) Appliance、Secure Connect Gateway (SCG) Policy Manager、SRS Policy Manager、SmartFabric Director、Storage Center - Dell Storage Manager、SupportAssist Enterprise、Unisphere Central、Vblock、VNXe 1600、VNXe 3200、VxBlock、vRealize Orchestrator (vRO) Plug-ins for Dell EMC Storage、vRealize Data Protection Extension Data Management、Wyse Management Suite
Google Cloud
公告網址 https://cloud.google.com/log4j2-security-advisory
資安弱點 CVE-2021-44228、CVE-2021-45046
類型 雲端服務
解決方案名稱
Actifio、AppSheet、Cloud Bigtable、Cloud Monitoring、Cloud SDK、Data Catalog、Data Fusion、Dataproc、Dataproc Metastore、Deep Learning Containers、Deep Learning VMs、Google Cloud VMware Engine、Looker、Migrate for Compute Engine (M4CE)、Notebooks、Vertex AI Workbench
HPE
資安弱點 CVE-2021-44228、CVE-2021-45046、CVE-2021-4104、CVE-2021-45105
類型 企業內部建置產品
解決方案名稱
HPE 3PAR Service Processor、HPE 5G Core Stack(5GCS) 、HPE Authentication Server Function、HPE ConvergedSystem 700、HPE ConvergedSystem 700 for Virtualization Components and Blocks、HPE ConvergedSystem 700x、HPE ConvergedSystem 700x for Cloud、HPE ConvergedSystem 750 for Virtualization、HPE ConvergedSystem 750 for Virtualization Components and Blocks、HPE Cray EX System Monitoring Application、HPE Cray System Management、HPE Data Center Fabric Manager (DCNM)、HPE Data Management Framework 7、HPE Device Entitlement Gateway (DEG)、HPE Dragon、HPE Dynamic SIM Provisioning (DSP)、HPE Edge Infrastructure Automation、HPE Ezmeral Container Platform、HPE Ezmeral Data Fabric、HPE Ezmeral Ecosystem PackElastic Search、HPE Enhanced Interactive Unified Mediation (eIUM)、HPE Hyper Converged 250 System、HPE Hyper Converged 380、HPE Integrated Home Subscriber Server Software系列、HPE Intelligent Management Center (iMC)、HPE Infosight for Storage、HPE Intelligent Assurance、HPE Media Workflow Master (MWM)、HPE Network Function Virtualization Director、HPE Parallel File System Storage、HPE Performance Cluster Manager、HPE Real Time Management System (RTMS) 、HPE Remote SIM Provisioning Manager (RSPM)、 HPE Service Director (SD)、HPE Revenue Intelligence Software系列、HPE SANnav Management Software、HPE SimpliVity 325 Gen10、HPE SimpliVity 380 Gen9、HPE SimpliVity 380 Gen10、HPE SimpliVity 2600 Gen10、HPE StoreServ Management Console (SSMC) 、HPE Telecom Analytics Smart Profile Server、HPE Telecom Management Information Platform Software 系列、HPE Trueview Inventory Software系列、HPE Unified Data Management、HPE Universal IoT (UioT) Platform、HPE User Data Repository(UDR)、HPE Unstructured Data Storage Function(UDSF) 、HPE Virtual Headend Manager、HPE XP7 Automation Director Software、HPE XP7 Intelligent Storage Manager、HPE XP Plugin -vCenter Storage Plugin、HPE XP Plugin - Redhat Ansible, Terraform, OLVM、HPE XP Performance Advisor Software、HP XP Command View Advanced Edition Software、Atlas Data Orchestrator、Cray ClusterStor Data Services、Cray View for ClusterStor、Silver Peak Orchestrator、SimpliVity OmniCube
IBM
公告網址 https://www.ibm.com/blogs/psirt/
an-update-on-the-apache-log4j-cve-2021-44228-vulnerability/
資安弱點 CVE-2021-44228
類型 雲端服務與企業內部建置產品
解決方案名稱
● 雲端服務
IBM Account Group Insights、IBM Benefits Mentor with Watson、IBM Client Data Gateway for Health、IBM Cloud Foundry Public、IBM DataProbe、IBM Digital Health Pass、IBM Explorys Platform with EPM、IBM Explorys Therapeutic Datasets Delivered、IBM Health Insights Dashboards、IBM Health Insights Explorer、IBM Health Insights Watson Change Detection、IBM Health Interoperability、IBM MarketScan Inpatient View and Outpatient View、IBM Micromedex Pharmaceutical Knowledge、IBM Micromedex with Watson、IBM Phytel Atmosphere、IBM Return-to-Workplace Advisor、IBM Security Verify、IBM Supply Chain Business Network、IBM Watson Care Manager、Analytics Engine、API Connect for IBM Cloud、App ID、Certificate Manager、Cloud Object Storage、Cloud Object Storage、Cloudant、Container Registry、Container Security Services、Continuous Delivery、DataStage SaaS、DB2 on Cloud、DB2 Warehouse on Cloud、DynaMed & Micromedex with Watson、Hyper Protect DBaaS for MongoDB、Hyper Protect DBaaS for PostgreSQL、Hyper Protect Virtual Server、Internet Services、J-SURS、Knowledge Studio、Managed VMware Service、Match 360 with Watson、Natural Language Understanding、Watson Assistant、Watson Discovery、Watson Knowledge Catalog、Watson Machine Learning、Watson Openscale、Watson Query、Watson Speech to Text、Watson Studio、Watson Text to Speech、Watson Tone Analyzer
● 企業內部建置產品
IBM API Connect、IBM App Connect Enterprise Certified Container、IBM App Connect Enterprise、IBM Application Navigator、IBM Business Automation Workflow、IBM Business Automation Workflow、IBM Business Process Manager、IBM Case Manager、IBM Cloud APM、IBM Cloud Application Business Insights、IBM Cloud Foundry Migration Runtime、IBM Cloud Object Storage File Access、IBM Cloud Object Storage Systems、IBM Cloud Pak for Applications、IBM Cloud Pak for Business Automation、IBM Cloud Pak for Watson AIOps、IBM Cloud Private、IBM Cloud Transformation Advisor、IBM Cognos Analytics、IBM Cognos Controller、IBM Content Navigator、IBM Control Center、IBM Cúram Social Program Management、IBM Data Risk Manager、IBM Data Virtualization on Cloud Pak for Data、IBM Db2、IBM Db2 Big SQL、IBM Db2 On Openshift, IBM Db2 and Db2 Warehouse on Cloud Pak for Data、IBM DB2 Warehouse、IBM Db2 Web Query for i、IBM Disconnected Log Collector、IBM Edge Application Manager、IBM Elastic Storage System、IBM Engineering Lifecycle Optimization、IBM Engineering Requirements Management DOORS、IBM Engineering Systems Design Rhapsody、IBM Event Streams、IBM Financial Transaction Manager、IBM i2 Analyze / Connect / Analyst’s Notebook Premium、IBM Informix Dynamic Server in Cloud Pak for Data、IBM InfoSphere Global Name Management、IBM Integrated Analytics System in the Db2 warehouse container、IBM Jazz for Service Management、IBM Jazz Team Server based applications、IBM License Metric Tool、IBM LKS Administration And Reporting Tool and IBM LKS Administration Agent、IBM MaaS360 Enterprise Gateway Module、IBM MQ blockchain bridge component of IBM MQ、IBM Netcool Agile Service Manager、IBM Observability with Instana、IBM OpenPages for IBM Cloud Pak for Data、IBM OpenPages with Watson、IBM Operations Analytics – Log Analysis、IBM Operations Analytics Predictive Insights、IBM Planning Analytics Workspace component within IBM Planning Analytics、IBM Power Hardware Management Console、IBM QRadar Risk Manager、IBM QRadar User Behavior Analytics、IBM Resilient SOAR、IBM Secure External Authentication Server、IBM Secure Proxy、IBM Security Access Manager Appliance and IBM Security Verify Access、IBM Security Access Manager for Enterprise Single-Sign On、IBM Security Guardium、IBM Security Guardium Data Encryption、IBM Security Guardium Insights、IBM Spectrum Archive Enterprise Edition、IBM Spectrum Conductor、IBM Spectrum Control、IBM Spectrum Copy Data Management、IBM Spectrum LSF、IBM Spectrum LSF Explorer and IBM Spectrum LSF Application Center、IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA、IBM Spectrum Protect Client Web GUI and IBM Spectrum Protect for Virtual Environments、IBM Spectrum Protect for Space Management、IBM Spectrum Protect Operations Center、IBM Spectrum Protect Plus、IBM Spectrum Protect Plus Container Backup and Restore、IBM Spectrum Protect Snapshot for VMware、IBM Spectrum Protect Snapshot for Windows、IBM Spectrum Protect Snapshot on Windows、IBM Spectrum Scale、IBM Spectrum Scale for IBM Elastic Storage Server、IBM Spectrum Symphony、IBM SPSS Analytic Server、IBM SPSS Modeler、IBM SPSS Statistics、IBM SPSS Statistics Desktop、IBM SPSS Statistics Server、IBM SPSS Statistics Subscription、IBM Sterling Configure, Price, Quote、IBM Sterling Connect:Direct、IBM Sterling Partner Engagement Manager、IBM Telco Network Cloud Manager、IBM Telco Network Cloud Manager – Performance、IBM Tivoli Netcool Impact、IBM Tivoli Netcool/OMNIbus Common Integration、IBM Tivoli Network Manager IP Edition、IBM UrbanCode Velocity、IBM Watson Discovery for IBM Cloud Pak for Data、IBM Watson Explorer、IBM Watson Studio Premium Add On in Cloud Pak for Data、IBM WebSphere Application Server、IBM WebSphere Application Server Patterns、IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps、IBM WebSphere Hybrid Edition、IBM WebSphere Remote Server、IBM Workload Scheduler、Atlas eDiscovery Process Management、Automation Assets in IBM Cloud Pak for Integration、Brocade SANnav、Cloud Pak for Business Automation、Cloud Pak for Data、Cloud Pak for Security、Collaboration and Deployment Services、Content Collector for Email、Content Collector for File Systems、Content Collector for IBM Connections、Content Collector for Microsoft SharePoint、Content Collector for Microsoft SharePoint、Decision Optimization for Cloud Pak for Data、DS8000 Hardware Management Console、Netcool Operation Insight、Netcool/Omnibus、NovaLink、Operations Dashboard in IBM Cloud Pak for Integration、Tivoli Composite Application Manager for Application Diagnostics、Watson Knowledge Catalog InstaScan、Watson Machine Learning in Cloud Pak for Data、Watson Studio in Cloud Pak for Data
微軟
公告網址 https://msrc-blog.microsoft.com/2021/12/11/
microsofts-response-to-cve-2021-44228-apache-log4j2/
資安弱點 CVE-2021-44228、CVE-2021-45046
類型 雲端服務與軟體
解決方案名稱
Azure Arc-enabled Data Services / SQL Arc-enabled data services、Azure HDInsight、Minecraft: Java Edition、SQL Server 2019 Big Data Clusters
Nvidia
公告網址 https://nvidia.custhelp.com/app/answers/detail/a_id/5294
資安弱點 CVE-2021-44228、CVE-2021-45046、CVE-2021-45105
類型 軟體開發套件、系統軟體
解決方案名稱
CUDA Toolkit 11.5之前版本:Visual Profiler、CUDA Toolkit 11.0之前版本:Nsight Eclipse Edition、DGX-1/ DGX-2 /DGX A100 / DGX Station / DGX Station A100:DGX OS 4與5版、NetQ 2.x至4.0.x版、vGPU軟體授權伺服器2021.07與2020.05 Update 1
Red Hat
公告網址 https://access.redhat.com/security/vulnerabilities/RHSB-2021-009
資安弱點 CVE-2021-44228、CVE-2021-45046
類型 企業內部建置產品
解決方案名稱
Red Hat AMQ Streams 1、Red Hat CodeReady Studio 12、Red Hat Data Grid 8、Red Hat Enterprise Application Platform 7、Red Hat Fuse 7、Red Hat Integration Camel K、Red Hat Integration Camel Quarkus、Red Hat OpenShift 3.11、Red Hat OpenShift 4(4.6 / 4.7/ 4.8)、Red Hat OpenShift Application Runtimes Vert.X 4 / 1.0、Red Hat OpenShift Logging(5.0 / 5.1 / 5.2 / 5.3)、Red Hat OpenStack Platform 13(Queens)、Red Hat Process Automation Manager 7
VMware
公告網址 https://www.vmware.com/security/advisories/VMSA-2021-0028.html
資安弱點 CVE-2021-44228、CVE-2021-45046
類型 企業內部建置產品與雲端服務
解決方案名稱
VMware AppDefense Appliance、VMware Carbon Black Cloud Workload Appliance、VMware Carbon Black EDR Server、VMware Cloud Foundation、VMware Cloud Director Object Storage Extension、VMware Cloud Provider Lifecycle Manager、VMware Harbor Container Registry for VMware Tanzu Kubernetes Grid Integrated Edition、VMware HCX、VMware Horizon、VMware Horizon Agents Installer、VMware Horizon Cloud Connector、VMware Horizon DaaS、VMware Identity Manager、VMware Integrated OpenStack、VMware NSX Data Center for vSphere、VMware NSX-T Data Center、VMware NSX-T Intelligence Appliance、VMware SD-WAN VeloCloud Orchestrator(VCO)、VMware Smart Assurance M&R、VMware Smart Assurance Network Configuration Manager (NCM)、VMware Smart Assurance Service Assurance Manager (SAM)、VMware Site Recovery Manager, vSphere Replication、VMware Tanzu GemFire、VMware Tanzu GemFire for VMs、VMware Tanzu Greenplum Platform Extension Framework、VMware Tanzu Operations Manager、VMware Tanzu Application Service for VMs、VMware Tanzu Kubernetes Grid Integrated Edition、VMware Tanzu Observability by Wavefront Nozzle、VMware Tanzu Observability Proxy、VMware Tanzu Scheduler、VMware Telco Cloud Operations、VMware Unified Access Gateway、VMware vCenter Server、VMware vCenter Cloud Gateway、VMware vRealize Automation、VMware vRealize Business for Cloud、VMware vRealize Lifecycle Manager、VMware vRealize Log Insight、VMware vRealize Network Insight、VMware vRealize Operations、VMware vRealize Operations Cloud (Cloud Proxy)、VMware vRealize Operations Tenant App for VMware Cloud Director VMware vRealize Orchestrator、VMware WorkspaceOne Access、VMware Workspace ONE Access Connector、API Portal for VMware Tanzu、App Metrics、Greenplum Text、Healthwatch for Tanzu Application Service、Single Sign-On for VMware Tanzu Application Service、Spring Cloud Gateway for Kubernetes、Spring Cloud Gateway for VMware Tanzu、Spring Cloud Services for VMware Tanzu
熱門新聞
2024-04-17
2024-04-15
2024-04-15
2024-04-15
2024-04-17
2024-04-15
2024-04-15