Dell EMC Updates
2377Warning Date
Severity Level
Warning Number
Target Sector
22 June, 2020
● High
2020-1371
All
Description:
Dell EMC has released security updates to address multiple vulnerabilities in the following products:
- Dell EMC Unisphere for PowerMax
- Versions prior to 9.1.0.17
- Dell EMC Unisphere for PowerMax Virtual Appliance
- Versions prior to 9.1.0.17
- PowerMax OS
- Release 5978
- Dell EMC Isilon OneFS
- Versions 8.2.2 and earlier
- Dell EMC PowerScale OneFS
- Version 9.0.0
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Gain unauthorized access to files.
- Man-in-the-middle attack.
- Execute commands to alter or stop database statistics.
Best practice and Recommendations:
The CERT team encourages users to review Dell EMC security advisory and apply the necessary updates:
- https://www.dell.com/support/security/en-us/details/544585/DSA-2020-065-Dell-EMC-Unisphere-for-PowerMax-Dell-EMC-Unisphere-for-PowerMax-Virtual-Appliance
- https://www.dell.com/support/security/en-us/details/544593/DSA-2020-155-Dell-EMC-Isilon-OneFS-and-Dell-EMC-PowerScale-Security-Update-for-a-Permissions-Vuln