Dell EMC Updates
1944Warning Date
Severity Level
Warning Number
Target Sector
20 December, 2020
● High
2020-2230
All
Description:
DELL EMC has released security updates to address several vulnerabilities in the following products:
- Dell EMC PowerFlex rack
- Dell EMC Unisphere PowerMax
- Dell EMC VxRail
- Dell Technologies VNXe1600
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
- Obtain sensitive information
- Buffer overflow
Best practice and Recommendations:
The CERT team encourages users to review DELL EMC security advisory and apply the necessary updates:
- https://www.dell.com/support/kbdoc/en-us/000181211/dsa-2020-279-dell-emc-powerflex-rack-security-update-for-multiple-third-party-component-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000181212/dsa-2020-277-dell-emc-unisphere-powermax-cross-site-scripting-xss-vulnerability
- https://www.dell.com/support/kbdoc/en-us/000181240/dsa-2020-283-dell-emc-vxrail-security-update-for-multiple-third-party-component-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000181290/dsa-2020-289-dell-technologies-vnxe1600-security-update-for-multiple-vulnerabilities