Giters

icthieves / log4j-log4shell-affected

Lists of affected components and affected apps/vendors by CVE-2021-44228 (aka Log4shell or Log4j RCE). This list is meant as a resource for security responders to be able to find and address the vulnerability

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

log4j-log4shell-affected

Lists of affected components and affected apps/vendors by CVE-2021-44228 (aka Log4shell or Log4j RCE) for security responders.

Affected Apps

i.e. all vendors you should worry about if you have data in their environemnt or if they access to your environment

Affected Components

i.e. software components you might have used in building your products that you should worry if they cause you to be vulnerable

Other useful resources

Lists

Artifacts using log4j

Compromised apps with confirmation

List of responses from various vendors, some affected and some not

Guides how to repsond

A fast and simple guide on what to do to respond to the log4j incident

General incident response guide in case you discover a 3rd party vendor of yours got hacked

Contributing

We are happy to recieve contributions from the community. Contribution guidelines:

  • Please make a PR editing the raw CSV files.
  • Please be sure to include a reference source for each added row (claims without a validated link for source of claim will not be accepted)

Our favorite description of the situation

image

About

Lists of affected components and affected apps/vendors by CVE-2021-44228 (aka Log4shell or Log4j RCE). This list is meant as a resource for security responders to be able to find and address the vulnerability