Various software vendors are working to patch their software that contains the Log4J vulnerability. HCL BigFix and Tenable have joined together to create and update the list of HCL BigFix Fixlets. Check this list frequently as new HCL BigFix content is made available to remediate the Log4J vulnerability.

Download the latest list of Log4J fixlets


A list of Log4J fixets are available in two file formats. Each file contains information about each available fixet, including but not limited to:

  • CVE ID
  • Tenable Plug-in ID
  • Fixlet Site
  • Fixlet ID

  • Name/Description
  • Patch Vendor ID
  • Vendor Release Date
  • BigFix Release Date





HCL will update these files as new patches and fixlets become available.


For more information about BigFix Insights for Vulnerability Remediation with Tenable, visit