-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

VMSA-2021-0028 - VMware Response to Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)

Please see the updated advisory here: https://www.vmware.com/security/advisories/VMSA-2021-0028.html

Changelog:

2021-12-10: VMSA-2021-0028
Initial security advisory.

2021-12-11: VMSA-2021-0028.1
Updated advisory with workaround information for multiple products including vCenter Server Appliance, vRealize Operations, Horizon, vRealize Log Insight, Unified Access Gateway.

2021-12-13: VMSA-2021-0028.2
Revised advisory with updates to multiple products.
•	VMware HCX
•	VMware NSX-T Data Center
•	VMware WorkspaceOne Access
•	VMware Identity Manager 
•	VMware vRealize Operations Cloud Proxy
•	VMware vRealize Lifecycle Manager
•	VMware Site Recovery Manager, vSphere Replication
•	VMware Carbon Black Cloud Workload Appliance
•	VMware Carbon Black EDR Server
•	VMware Tanzu GemFire
•	VMware Tanzu Greenplum
•	VMware Tanzu Operations Manager
•	VMware Tanzu Application Service for VMs
•	VMware Tanzu Kubernetes Grid Integrated Edition
•	VMware Tanzu Observability by Wavefront Nozzle
•	Healthwatch for Tanzu Application Service
•	Spring Cloud Services for VMware Tanzu
•	API Portal for VMware Tanzu
•	Single Sign-On for VMware Tanzu Application Service
•	App Metrics
•	VMware vCenter Cloud Gateway
•	VMware Cloud Foundation
•	VMware Workspace ONE Access Connector
•	VMware Horizon DaaS
•	VMware Horizon Cloud Connector
•	VMware NSX Data Center for vSphere
•	VMware AppDefense Appliance
•	VMware Cloud Director Object Storage Extension

You are receiving this alert because you are subscribed to the VMware Security Announcements mailing list. To modify your subscription or unsubscribe please visit https://lists.vmware.com/mailman/listinfo/security-announce.
-----BEGIN PGP SIGNATURE-----

iF0EARECAB0WIQQATpKvqUhghXJhavw/xTN5GfcH8QUCYbehqwAKCRA/xTN5GfcH
8ZLBAJsGh928Q1Fu4d2FixHS+5hbYkGAZACg6N2p03IJVIl6kp1X4Cnuft7OWpM=
=V4Eq
-----END PGP SIGNATURE-----

_______________________________________________
Security-announce mailing list
Security-announce@lists.vmware.com
http://lists.vmware.com/mailman/listinfo/security-announce