Syneto has determined that our operating systems StorageOS 3.x and SynetoOS 4.x are NOT impacted by the vulnerability described in CVE-2021-44228. None of these operating system run any Java processes with Log4J.
VMware states on their Security Advisory page - as of 15/12/2021 - that VMware vSphere ESXi is NOT impacted by CVE-2021-44228.
Therefore, software components that are part of the Syneto hyperconverged platform are NOT impacted by the aforementioned vulnerability.
VMware informs that vCenter Server IS impacted by CVE-2021-44228.
Syneto recommends to our customers and partners to closely monitor the VMware security advisory available on this page and to apply the recommended mitigation solutions for other VMware products they are running.