NERC CIP Bootcamp Giveaway – Enter to Win!
Support

SOLUTIONS

OT Asset Management
Configuration & Change Management
Policy Compliance
Vulnerability Management

PLATFORM

Industrial Defender Platform
Phoenix for SMBs
Services
Partners

INDUSTRIES

Power
Oil & Gas
Water
Manufacturing
US Government
See all

RESOURCES

Blog
Podcast
Resource Library
OT Cybersecurity Risk Assessment Calculator
Innovations by Industrial Defender
FAQ

COMPANY

About Us
How We Compare
Team
Events
Press
Careers
Contact Us

SUPPORT

REQUEST DEMO

OT Vulnerability Management

CVE-2021-44228 - Industrial Defender update on log4j

Industrial Defender Staff
December 14, 2021

Vulnerability Summary

Some applications that leverage log4j2 (2.14.1 or older) are vulnerable to a simple attack which can allow for remote code execution. Apache Log4j <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled (CVE-2021-44228).

Protect Industrial Defender components against CVE-2021-44228

Following internal research and validation by the Industrial Defender security and R&D teams the following products are NOT impacted and NOT vulnerable to CVE-2021-44228.

  • Industrial Defender ASM all versions
  • Industrial Defender IDC all versions
  • Industrial Defender ASA all versions
  • Industrial Defender NIDS all versions
  • Industrial Defender Agents all versions

Using Industrial Defenders Policy Application

Customers can use the Policy application to check for the presence of log4j or applications that may
be leveraging.

Using Industrial Defenders Vulnerability Monitoring Service (VMS)

Our VMS is updated in real time as data is made available about CVEs. Industrial Defender recommends customers do a data exchange to help determine exposure to CVE-2021-44228.

Using Industrial Defenders NIDS or IDC

Signatures have been published that can detected the remote code execution associated with log4j vulnerability. They are available on the on the Industrial Defender support portal.

For further information regarding this critical security issue please contact our Support Team.

Email Support

Phone - 877-943-3363

Stay up to date.

Sign up for our newsletter to receive the latest
Industrial Defender news, updates and content.

SOC 2® Type II Certified
PRODUCTS
Industrial Defender PlatformImmunity by IDBuilding DefenderRTAP
SERVICES
Cyber Diligence ServiceCopilOT ServiceTMCommissioningSupportTrainingSustain
SOLUTION BY TYPE
OT Asset ManagementVulnerability ManagementSecurity Event MonitoringCompliance Reporting
SOLUTION BY FUNCTION
SecurityComplianceOperationsExecutive
SOLUTION BY INDUSTRY
Building AutomationChemicalElectricFederal GovernmentFood & AgricultureMaritimeMetals & MiningOil & GasPharmaceuticalsRailWater
RESOURCES
Resource CollectionDefenderSphereIT-OT Integration LabOT Cybersecurity Risk CalculatorInnovations by ID
COMPANY
About UsHow We CompareTeamEventsPressCareersContact Us