Is Nodegrid OS or ZPE Cloud affected by Apache Log4j vulnerabilities?

Is Nodegrid OS or ZPE Cloud affected by Apache Log4j vulnerabilities?

CVE-2021-44228:
While ZPE Systems has identified Nodegrid versions v4.2.x, v5.0x, v5.2.x to be possibly affected by the CVE-2021-44228, we could not yet confirm that the systems can be exploited. 
Regardless, we released new version to fix such vulnerabilities:
 
December 16, 2021: v4.2.17
December 16, 2021: v5.0.15
December 17, 2021: v5.2.7
 
The Nodegrid v3.2.x and EOL v4.0.x versions are _not_ affected by this vulnerability.
The EOL v4.1.x version is affected, and we recommend to upgrade to v4.2.17, 5.0.15 or 5.2.7. If version is older than 4.1.6, you will need to upgrade to 4.1.6 and then to the latest versions. From 4.1.6 version, you can upgrade directly to the latest versions.

ZPE Cloud is not affected by this CVE.

CVE-2021-4125:
ZPE Software and Cloud are _not_ vulnerable to CVE-2021-4125 (OpenShift Metering Hive container images).

CVE-2021-44832:
ZPE Software and Cloud are _not_ vulnerable to CVE-2021-44832 (Apache Log4j2)

    • Related Articles

    • How to Manually Add a Device in ZPE Cloud

      Log into ZPE Cloud and click on settings.  This will take you directly to the "Enrollment" page.  Make sure to check the box for "Enable Device Enrollment" to enable enrollment.  Here you will need to copy your "Customer Code" and your "Enrollment ...
    • Nodegrid Docker license and virtualization

      The Nodegrid platform allows administrators to run Docker applications. The platform allows pulling of Docker applications from Docker Hub, starting and stopping of the Docker Containers. The management of Docker Applications is currently only ...
    • Troubleshooting steps for ZPE Cloud scheduled Backup failures

      Verify the affected system's time is set correctly If there is a significant time difference between ZPE Cloud and the target system, the backup will not upload properly causing the job to fail. Check the system's time from the GUI: System :: Date ...
    • Nodegrid Manager Installation in ESXi 6

      Nodegrid Manager software is installed from an ISO file. The installation procedure is a three-stage process:  Creating a virtual machine; Booting from the ISO file in order to install the software; Restarting and booting from the newly created ...
    • Nodegrid Manager Installation in ESXi 5

      Nodegrid Manager software is installed from an ISO file. The installation procedure is a three-stage process:  Creating a virtual machine; Booting from the ISO file in order to install the software; Restarting and booting from the newly created ...