List of software (un)affected by the log4shell CVEs

June 15, 2022 · View on GitHub

About this list

0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

O

SupplierProductVersion (see Status)Status CVE-2021-4104Status CVE-2021-44228Status CVE-2021-45046Status CVE-2021-45105NotesLinks
OpenTextAlllink
Opto 22GROOV-AR1, GROOV-AR1-BASE, GROOV-AR1-SNAP< 4.3gFixThe Log4j vulnerability affects all products running groov View softwarelink
Opto 22GROOV-AT1, GROOV-AT1-SNAP< 4.3gFixThe Log4j vulnerability affects all products running groov View softwarelink
Opto 22GROOV-SVR-WIN, GROOV-SVR-WIN-BASE, GROOV-SVR-WIN-SNAP< 4.3gFixThe Log4j vulnerability affects all products running groov View softwarelink
Opto 22GRV-EPIC-PR1, GRV-EPIC-PR2< 3.3.2FixThe Log4j vulnerability affects all products running groov View softwarelink
Objectif LuneAllObjectif Lune Blog Post
Obsidian DynamicskafdropAllInvestigationsource
OCLCAllAllNot vulnFixsource
OctopusAllOctopus Advisory
OgestAllAllNot vulnNot vulnNot vulnNot vulnsource
OktaAccess GatewayNot vulnsource
OktaAD AgentNot vulnsource
OktaAdvanced Server AccessNot vulnsource
OktaBrowser PluginNot vulnsource
OktaIWA Web AgentNot vulnsource
OktaLDAP AgentNot vulnsource
OktaMobileNot vulnsource
OktaOn-Prem MFA Agent<1.4.6Not vulnFixsource fix
OktaRadius Server Agent2.17.0Not vulnFixsource/fix
OktaRADIUS Server Agent< 2.17.0VulnerableOkta RADIUS Server Agent CVE-2021-44228 Okta
OktaVerifyNot vulnsource
OktaWorkflowNot vulnsource
OktaWorkflowsNot vulnNot vulnNot vulnNot vulnOkta’s response to CVE-2021-44228 (“Log4Shell”) Okta Security
OlympusMedical ProductsAllNot Vulnsource
OneSpanAuthentication ApplianceVulnerableFix availability will be announced soonsource
OneSpanAuthentication ServerVulnerableFix availability will be announced soonsource
OneSpanDigipass GatewayVulnerableFix availability will be announced soonsource
OneSpanMobile Security Suite4.31.1Not vulnFixsource
OneSpanSignVulnerableFix availability will be announced soonsource
Open TextContent Server21.3, 21.4Not vulnVulnerablesource
Open TextExtended ECM for Microsoft Office 36521.3, 21.4Not vulnVulnerablesource
OpengearAllOpengear Link
openHABAll3.0.4, 3.1.1Not vulnFixsource
OpenMRSTalk2.4.0-2.4.1VulnerableMitigations are available, pending a new releasesource
OpenMRS TALKAllOpenMRS TALK Link
OpenNMSHorizon (including derived Sentinels)< 29.0.3Not vulnFixWorkarounds are available too for earlier versionssource
OpenNMSMeridian (including derived Minions and Sentinels)< 2021.1.8, 2020.1.15, 2019.1.27Not vulnFixWorkarounds are available too for earlier versionssource
OpenNMSMinion applianceNot vulnFixsource
OpenNMSPoweredBy OpenNMSNot vulnWorkaroundsource
Openpath (Motorola)AllNot vulnNot vulnNot vulnNot vulnsource
OpenSearchAll< 1.2.1Not vulnFixsource
OpenVPNAllNot vulnNot vulnNot vulnNot vulnsource
OracleAccess ManagerNot vulnsource Support note 2827611.1
OracleData Integrator (ODI)>= 12.2.1.3.210119, Marketplace - >= 2.1.0Not vulnWorkaroundPatch Available, Support Note 2827793.1source Support note 2827611.1 Support Note 2827793.1
OracleDatabaseNot vulnsource Support note 2827611.1
OracleeBusiness SuiteNot vulnWorkaroundMOS note 2827804.1source Support note 2827611.1
OracleEnterprise ManagerNot vulnsource Support note 209768.1 Support note 2827611.1
OracleEnterprise RepositoryNot vulnWorkaroundMitigation, Support Note 2827793.1source Support note 2827611.1 Support Note 2827793.1
OracleFormsNot vulnsource Support note 2827611.1
OracleFusion Middleware12.2.1.3.0 to 12.2.1.4.0Not vulnFixsource Support note 209768.1 Support note 2827611.1 MOS note 2827793.1
OracleGolden GateNot vulnsource Support note 2827611.1
OracleHTTP ServerNot vulnsource Support note 209768.1 Support note 2827611.1
OracleInternet DirectoryNot vulnsource Support note 209768.1 Support note 2827611.1
OracleJDeveloperNot vulnWorkaroundMitigation Available, Support Note 2827793.1source Support note 2827611.1 Support Note 2827793.1
OracleNoSQL DatabaseNot vulnsource Support note 2827611.1
OraclePolicy Automation (OPA)Not vulnFixsource Support note 2827611.1
OracleSOA SuiteNot vulnsource Support note 2827611.1
OracleSQL Developer21.4.1Not vulnFixsource
OracleVM VirtualBoxNot vulnsource Support note 2827611.1
OracleWebCenter Portal12.2.1.3 & 12.2.1.4Not vulnWorkaroundMOS note 2827977.1 using Elasticsearch which uses Log4j 2.X jarssource Support note 2827611.1
OracleWebCenter SitesNot vulnWorkaroundMitigation Available, Support Note 2827793.1source Support note 2827611.1 Support Note 2827793.1
OracleWebLogic Server12.2.1.3.0 to 14.1.1.0.0Not vulnFixsource Support note 209768.1 Support note 2827611.1 MOS Note 2827793.1
OrgavisionAllOrgavision Link
OsiriumAllNot vulnNot vulnNot vulnNot vulnsource
OTRSAllNot vulnsource
OvarroAlarmVisionNot vulnNot vulnNot vulnsource
OvarroAtriumNot vulnNot vulnNot vulnsource
OvarroBurstDetectNot vulnNot vulnNot vulnsource
OvarroCA ToolsNot vulnNot vulnNot vulnsource
OvarroControlPointNot vulnNot vulnNot vulnsource
OvarroDSGNot vulnNot vulnNot vulnsource
OvarroEDGE ConnectNot vulnNot vulnNot vulnsource
OvarroEDGE Connect+Not vulnNot vulnNot vulnsource
OvarroEnigmaNot vulnNot vulnNot vulnsource
OvarroEnigma3m/Phocus3m/Enigma4G/IOTNot vulnNot vulnNot vulnsource
OvarroEnigmaWebNot vulnNot vulnNot vulnsource
OvarroEureka3Not vulnNot vulnNot vulnsource
OvarroEureka5Not vulnNot vulnNot vulnsource
OvarroFlowsureNot vulnNot vulnNot vulnsource
OvarroIOT-ConnectorNot vulnNot vulnNot vulnsource
OvarroKingfisher CP12Not vulnNot vulnNot vulnsource
OvarroKingfisher CP30Not vulnNot vulnNot vulnsource
OvarroKingfisher CP35/MC35Not vulnNot vulnNot vulnsource
OvarroLeakVision/LeakInsightNot vulnNot vulnNot vulnsource
OvarroLoggerVisionNot vulnNot vulnNot vulnsource
OvarroMikron3Not vulnNot vulnNot vulnsource
OvarroMikron5Not vulnNot vulnNot vulnsource
OvarroMiserNot vulnNot vulnNot vulnsource
OvarroMS-CPU42Not vulnNot vulnNot vulnsource
OvarroOther software packages (Adroit/DX-Server)Not vulnNot vulnNot vulnsource
OvarroPhocus3 (IR & Radio)Not vulnNot vulnNot vulnsource
OvarroPioneerNot vulnNot vulnNot vulnsource
OvarroPrimeWebNot vulnNot vulnNot vulnsource
OvarroS2000Not vulnNot vulnNot vulnsource
OvarroS2000 MicroNot vulnNot vulnNot vulnsource
OvarroS2000 Micro Mk2Not vulnNot vulnNot vulnsource
OvarroS2000 Mk2Not vulnNot vulnNot vulnsource
OvarroS2000 NanoNot vulnNot vulnNot vulnsource
OvarroSCOPENot vulnNot vulnNot vulnsource
OvarroStreamNot vulnNot vulnNot vulnsource
OvarroTBox LT2/TG2Not vulnNot vulnNot vulnsource
OvarroTBox MS-CPU32Not vulnNot vulnNot vulnsource
OvarroTBox MS-CPU32-S2Not vulnNot vulnNot vulnsource
OvarroTConnectNot vulnNot vulnNot vulnsource
OvarroToolBoxNot vulnNot vulnNot vulnsource
OvarroToolBoxPlusNot vulnNot vulnNot vulnsource
OvarroTWinSoftNot vulnNot vulnNot vulnsource
OvarroXiLog+Not vulnNot vulnNot vulnsource
OvarroXiLog4G/IOTNot vulnNot vulnNot vulnsource
OVHCloudHosted Private Cloud powered by VMwareVulnerableDeploying the workarounds provided by VMWaresource
OVHCloudLogs Data PlatformNot vulnFixsource
OVHCloudML servingNot vulnFixsource
OVHCloudOVHcloud Internal SystemsNot vulnInvestigationsource
OWASPZAP< 2.11.1Not vulnFixsource
OwncloudAllNot vulnsource
OxygenXMLAuthorVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLDeveloperVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLEditorVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLOxygen Content Fusion2.0, 3.0, 4.1Vulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLOxygen Feedback Enterprise1.4.4 & olderVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLOxygen License Serverv22.1 to v24.0Vulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLOxygen PDF Chemistryv22.1, 23.0, 23.1, 24.0Vulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLOxygen SDKVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLPlugins (see advisory link)Vulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLPublishing EngineVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLWeb AuthorVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html
OxygenXMLWebHelpVulnerablehttps://www.oxygenxml.com/security/advisory/CVE-2021-44228.html