10 Technology Vendors Affected By The Log4j Vulnerability
Vulnerable Log4j code can be found in products from some of the most prominent technology vendors like Cisco, IBM, and VMware, and as well as one serving the MSP community like ConnectWise and N-able.
Thirty-five Cisco tools across the following product areas are impacted by the Log4j flaw: collaboration and social media; network and content security devices; network management and provisioning; routing and switching; unified computing; voice and unified communications; and video. Voice and unified communications and network management and provisioning had the most products impacted.
A fix is expected Tuesday for Cisco Webex Meetings Server; Thursday for Cisco Video Surveillance Operations Manager; Friday for Cisco Network Services Orchestrator (NSO); and Jan. 2 for Cisco Nexus Dashboard. For the other 31 products affected by the Log4j vulnerability, Cisco said it is continuing to evaluate the fix and will update its advisory as additional information becomes available.
As for Cisco’s cloud offerings, the San Jose, Calif.-based company said five of its tool are still impacted, while seven others were susceptible to the vulnerability but a fix has been put in place.