[Security-announce] VMSA-2021-0028 Updates

VMware Security Announcements security-announce at lists.vmware.com
Mon Dec 13 11:41:49 PST 2021

Hash: SHA1

VMSA-2021-0028 - VMware Response to Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)

Please see the updated advisory here: https://www.vmware.com/security/advisories/VMSA-2021-0028.html


2021-12-10: VMSA-2021-0028
Initial security advisory.

2021-12-11: VMSA-2021-0028.1
Updated advisory with workaround information for multiple products including vCenter Server Appliance, vRealize Operations, Horizon, vRealize Log Insight, Unified Access Gateway.

2021-12-13: VMSA-2021-0028.2
Revised advisory with updates to multiple products.
•	VMware HCX
•	VMware NSX-T Data Center
•	VMware WorkspaceOne Access
•	VMware Identity Manager 
•	VMware vRealize Operations Cloud Proxy
•	VMware vRealize Lifecycle Manager
•	VMware Site Recovery Manager, vSphere Replication
•	VMware Carbon Black Cloud Workload Appliance
•	VMware Carbon Black EDR Server
•	VMware Tanzu GemFire
•	VMware Tanzu Greenplum
•	VMware Tanzu Operations Manager
•	VMware Tanzu Application Service for VMs
•	VMware Tanzu Kubernetes Grid Integrated Edition
•	VMware Tanzu Observability by Wavefront Nozzle
•	Healthwatch for Tanzu Application Service
•	Spring Cloud Services for VMware Tanzu
•	API Portal for VMware Tanzu
•	Single Sign-On for VMware Tanzu Application Service
•	App Metrics
•	VMware vCenter Cloud Gateway
•	VMware Cloud Foundation
•	VMware Workspace ONE Access Connector
•	VMware Horizon DaaS
•	VMware Horizon Cloud Connector
•	VMware NSX Data Center for vSphere
•	VMware AppDefense Appliance
•	VMware Cloud Director Object Storage Extension

You are receiving this alert because you are subscribed to the VMware Security Announcements mailing list. To modify your subscription or unsubscribe please visit https://lists.vmware.com/mailman/listinfo/security-announce.


More information about the Security-announce mailing list