This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Log4j report

Go to solution
lightupdifire
Engaged Sweeper

‎01-26-2022 01:54 PM

Hello,

Would be great to understand a little bit more about the Log4j report,

As an example, we receive 200 devices with different software listed, few examples of the software:
Cisco AnyConnect Secure Mobility Client;
Dell Command | Update;
etc.

Does this mean that all those devices, where the above software is detected, are vulnerable?
As an example, checked the Cisco AnyConnect Secure Mobility Client and in the Cisco docs about Log4j they say that the "Cisco AnyConnect Secure Mobility Client" software is not affected by Log4j...

I try to understand how exploitable devices are that this report gives.

Best regards,
L
Labels:
0 Kudos
1 ACCEPTED SOLUTION
Go to solution
Esben_D
Lansweeper Employee
Lansweeper Employee

‎01-27-2022 12:21 PM

Not sure if you read the report page:

"The report below is based on a software GitHub list created by the Dutch national cyber security center. The report lists all software in your environment for which the publisher matches with one of the publishers listed by the Dutch cyber security center that had at one point vulnerable software. The software found can be cross-checked with the Github software list to view the most recent Log4j vulnerability status."

https://www.lansweeper.com/report/log4j-vulnerable-software-audit/

View solution in original post

0 Kudos
2 REPLIES 2
Go to solution
lightupdifire
Engaged Sweeper

‎01-27-2022 01:44 PM

Hello Esben,

Thanks for the input!

Best regards,
L
0 Kudos
Go to solution
Esben_D
Lansweeper Employee
Lansweeper Employee

‎01-27-2022 12:21 PM

Not sure if you read the report page:

"The report below is based on a software GitHub list created by the Dutch national cyber security center. The report lists all software in your environment for which the publisher matches with one of the publishers listed by the Dutch cyber security center that had at one point vulnerable software. The software found can be cross-checked with the Github software list to view the most recent Log4j vulnerability status."

https://www.lansweeper.com/report/log4j-vulnerable-software-audit/
0 Kudos

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now