solution Contentsolution Content

Apache Log4j vulnerability

On Friday, December 10, 2021, a security vulnerability was announced for Apache Log4j.

This security vulnerability is being tracked as CVE-2021-44228. This vulnerability is scored as a critical issue by the Apache Foundation (CVSS score 10.0). HP is reviewing products for potential impact. Please follow our Security Bulletins here for updates as we learn more.

At this time, HP can confirm the following products and services are not affected. More information will be provided as it becomes available, and the list below will be updated accordingly.

The following HP Personal Systems products and solutions are not affected by CVE-2021-44228.

  • HP Chromebooks and Chromebase All-in-Ones

  • HP business computers

  • HP Command Center (HPCC) Solutions Store

  • HP Device Manager

  • HP displays and accessories

  • HP home computers

  • HP Thin Client computers

  • HP Performance Advisor

  • HP Workstation computers

  • HP Wolf Security

  • HyperX products

  • OMEN computers

  • ZCentral software products