Zebra's Industry Solutions can give your business a competitive advantage by connecting people, assets and data to help you make better decisions.
Scale and energise your retail strategy with a digital backbone that unifies your team, informs priorities and drives results with Zebra's retail technology solutions.
Zebra's healthcare technology solutions provide patient identity management, mobile health devices, and business intelligence data to improve efficiency.
Zebra’s manufacturing technology solutions enable manufacturers to become more agile, optimise plant floor performance and embrace market changes.
Zebra's market-leading solutions and products improve customer satisfaction with a lower cost per interaction by keeping service representatives connected with colleagues, customers, management and the tools they use to satisfy customers across the supply chain.
In today's world, the demands on transportation and logistics companies are higher than ever. Dedicated Warehouse, Fleet and Delivery, and Yard and Terminal solutions enable visibility to every aspect of your business and keep operations running flawlessly around the clock.
Zebra's hospitality technology solutions equip your hotel and restaurant staff to deliver superior customer and guest service through inventory tracking and more.
Empower your field workers with purpose-driven mobile technology solutions to help them capture and share critical data in any environment.
Zebra’s mobile computing, scanning, and printing solutions connect each operational area in your warehouse to give you the agility to realize transformational gains.
Zebra's range of mobile computers equip your workforce with the devices they need from handhelds and tablets to wearables and vehicle-mounted computers.
Zebra's desktop, mobile, industrial, and portable printers for barcode labels, receipts, RFID tags and cards give you smarter ways to track and manage assets.
Zebra's 1D and 2D corded and cordless barcode scanners anticipate any scanning challenge in a variety of environments, whether retail, healthcare, T&L or manufacturing.
Zebra's extensive range of RAIN RFID readers, antennas, and printers give you consistent and accurate tracking.
Choose Zebra's reliable barcode, RFID and card supplies carefully selected to ensure high performance, print quality, durability and readability.
Zebra's location technologies provide real-time tracking for your organisation to better manage and optimise your critical assets and create more efficient workflows.
Zebra's rugged tablets and 2-in-1 laptops are thin and lightweight, yet rugged to work wherever you do on familiar and easy-to-use Windows or Android OS.
With Zebra's family of fixed industrial scanners and machine vision technologies, you can tailor your solutions to your environment and applications.
Zebra’s line of kiosks can meet any self-service or digital signage need, from checking prices and stock on an in-aisle store kiosk to fully-featured kiosks that can be deployed on the wall, counter, desktop or floor in a retail store, hotel, airport check-in gate, physician’s office, local government office and more.
Discover Zebra’s range of accessories from chargers, communication cables to cases to help you customise your mobile device for optimal efficiency.
Zebra's environmental sensors monitor temperature-sensitive products, offering data insights on environmental conditions across industry applications.
Keep labour costs low, your talent happy and your organisation compliant. Create an agile operation that can navigate unexpected schedule changes and customer demand to drive sales, satisfy customers and improve your bottom line.
Empower the front line with prioritised task notification and enhanced communication capabilities for easier collaboration and more efficient task execution.
Get full visibility of your inventory and automatically pinpoint leaks across all channels.
Reduce uncertainty when you anticipate market volatility. Predict, plan and stay agile to align inventory with shifting demand.
Drive down costs while driving up employee, security, and network performance with software designed to enhance Zebra's wireless infrastructure and mobile solutions.
Explore Zebra’s printer software to integrate, manage and monitor printers easily, maximising IT resources and minimising down time.
Make the most of every stage of your scanning journey from deployment to optimisation. Zebra's barcode scanner software lets you keep devices current and adapt them to your business needs for a stronger ROI across the full lifecycle.
RFID development, demonstration and production software and utilities help you build and manage your RFID deployments more efficiently.
RFID development, demonstration and production software and utilities help you build and manage your RFID deployments more efficiently.
Zebra DNA is the industry’s broadest suite of enterprise software that delivers an ideal experience for all during the entire lifetime of every Zebra device.
Advance your digital transformation and execute your strategic plans with the help of the right location and tracking technology.
The Zebra Aurora suite of machine vision software enables users to solve their track-and-trace, vision inspection and industrial automation needs.
Zebra Aurora Focus brings a new level of simplicity to controlling enterprise-wide manufacturing and logistics automation solutions. With this powerful interface, it’s easy to set up, deploy and run Zebra’s Fixed Industrial Scanners and Machine Vision Smart Cameras, eliminating the need for different tools and reducing training and deployment time.
Aurora Imaging Library™, formerly Matrox Imaging Library, machine-vision software development kit (SDK) has a deep collection of tools for image capture, processing, analysis, annotation, display, and archiving. Code-level customization starts here.
Aurora Design Assistant™, formerly Matrox Design Assistant, integrated development environment (IDE) is a flowchart-based platform for building machine vision applications, with templates to speed up development and bring solutions online quicker.
Designed for experienced programmers proficient in vision applications, Aurora Vision Library provides the same sophisticated functionality as our Aurora Vision Studio software but presented in programming language.
Aurora Vision Studio, an image processing software for machine & computer vision engineers, allows quick creation, integration & monitoring of powerful OEM vision applications.
Adding innovative tech is critical to your success, but it can be complex and disruptive. Professional Services help you accelerate adoption, and maximise productivity without affecting your workflows, business processes and finances.
Zebra's Managed Service delivers worry-free device management to ensure ultimate uptime for your Zebra Mobile Computers and Printers via dedicated experts.
Find ways you can contact Zebra Technologies’ Support, including Email and Chat, ask a technical question or initiate a Repair Request.
Zebra's Circular Economy Program helps you manage today’s challenges and plan for tomorrow with smart solutions that are good for your budget and the environment.
Connecting....
Don't worry, after the chat ends, you can save the transcript. Click the agent name in the header and then click Save Transcript.
Sorry your session has expired due to 30 minutes of inactivity. Please start a new chat to continue.
Chat Ended
The new and improved Support and Downloads pages are now live! You asked, and we listened. Visit the Support and Downloads Experience page to learn more about this update.
Zebra Technologies is actively following the security vulnerability in the open-source Apache “Log4j 2" utility (CVE-2021-44228). We are currently assessing the potential impact of the vulnerability for Zebra products and solutions. This is an ongoing event, and we will continue to provide updates through our customer communications channels. Our support page will be updated to include relevant information as it becomes available.
Background: The Apache Log4j utility is a commonly used component for logging requests. On December 9, 2021, a vulnerability was reported that could allow a system running Apache Log4j version 2.14.1 or below to be compromised and allow an attacker to execute arbitrary code.
On December 10, 2021, NIST published a critical Common Vulnerabilities and Exposure alert, CVE-2021-44228. More specifically, Java Naming Directory Interface (JNDI) features used in configuration, log messages, and parameters do not protect against attacker-controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from remote servers when message lookup substitution is enabled.
CVE-2021-45046 (Dec 14, 2021)
Description: It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in a denial of service (DOS) attack. Log4j 2.15.0 makes a best-effort attempt to restrict JNDI LDAP lookups to localhost by default. Log4j 2.16.0 fixes this issue by removing support for message lookup patterns and disabling JNDI functionality by default.
What should I do to protect myself?
We strongly encourage customers to consult with their SW vendors and obtain patches and update as soon as possible for all impacted SW applications
For internally developed servers or applications we strongly encourage customers who manage environments containing Log4j 2 to update to version Log4j 2.15.0 or later per Apache's guidance https://logging.apache.org/log4j/2.x/
Affected Product | CVE-2021-44228 (Apache Log4j 2) | Date | CVE-2021-45046 | Date |
---|---|---|---|---|
Visibility IQ (VIQF) | Limited exposure to this vulnerability; remediation complete | Remediated Dec 12th, 2021 | Not affected | N/A |
SOTI MobiControl v 14.3 to 15.4.1 – Hosted Environments | Limited exposure to this vulnerability. Engineering is actively working to resolve | Remediated Dec 22nd, 2021 | Limited exposure to this vulnerability. Engineering is actively working to resolve | Remediated Dec 22nd, 2021 |
PTT Pro Windows/Desktop (G1, G2) | Upon continued assessment of vulnerability the following Workforce Connect (WFC) products have been determined to not be impacted by this vulnerability | N/A | Upon continued assessment of vulnerability the following Workforce Connect (WFC) products have been determined to not be impacted by this vulnerability | N/A |
Zebra Enterprise Messaging | After investigation; using version not impacted by this vulnerability. | Remediated Dec 15, 2021 | Not affected | N/A |
Fetch | Limited exposure to this vulnerability. Engineering mitigated issue | Remediated Dec 12th, 2021 | Limited exposure to this vulnerability. Engineering is actively working to resolve | Upon continued assessment of the vulnerability, this product have been determined to not be impacted. |
Reflexis | Full exposure to this vulnerability; Engineering is actively working to resolve | Remediated Dec 29th, 2021 | Full exposure to this vulnerability; Engineering is actively working to resolve | Remediated Jan 7th, 2022 |
Visibility Server Software (ZLS) | After investigation; using version not impacted by this vulnerability. | Remediated Dec 14, 2021 | After investigation; using version not impacted by this vulnerability. | N/A |
MotionWorks Enterprise (ZLS) | Remediated vulnerability by setting -Dlog4j2.formatMsgNoLookups=true when starting JVM | Remediated Dec 14, 2021 | Low Risk - The components use log4j will only receive requests when the user is authenticated. They do not log arbitrary user inputs. | Remediated Dec 19, 2021 |
Zebra Profitect (ZPA) | Limited exposure to this vulnerability. Engineering as removed IntelliJ and Log4J to remediate | Remediated Dec 10th, 2021 | Not affected | N/A |
Printer Profile Manager Enterprise (PPME) | Not impacted by this vulnerability. Version 3.2.7563 and later removes and/or updates files and components related to Log4j. Visit the support page. | Updated Feb 8th, 2021 | Not impacted by this vulnerability. Version 3.2.7563 and later removes and/or updates files and components related to Log4j. Visit the support page. | Updated Feb 8th, 2021 |
Disclaimer: Zebra makes every attempt to release security updates on or about the time that Google releases its respective security bulletin. However, delivery time of security updates may vary depending on the region, product model, and third party software suppliers. Under some circumstances, the OS must be updated to the latest maintenance release prior to installing the security updates. Individual product updates will provide specific guidance.
Unless otherwise noted, there have been no reports of active customer exploitation or abuse from these newly reported issues.
Are you aware of a potential security issue with a Zebra Technologies product?
Legal Terms of Use Privacy Policy Supply Chain Transparency
ZEBRA and the stylized Zebra head are trademarks of Zebra Technologies Corp., registered in many jurisdictions worldwide. All other trademarks are the property of their respective owners. ©2024 Zebra Technologies Corp. and/or its affiliates.