The official site for Saudi CERT
Dell EMC Updates
2731
Warning Date
Severity Level
Warning Number
Target Sector
12 July, 2020
● Critical
2020-1479
All
Description:
Dell EMC has released security updates to address multiple vulnerabilities in the following products:
- Dell EMC Data Domain
- BMC
- iDRAC
- Dell EMC DCA
- Kernel
- telnet
- bash
- ImageMagick
- ansible
- getnext
- rsyslog
- Tomcat
- JRE Security Vulnerability Oracle April 2020 CPU
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Buffer overflow.
- Command injection remotely.
Best practice and Recommendations:
The CERT team encourages users to review Dell EMC security advisory and apply the necessary updates:
- https://www.dell.com/support/security/en-us/details/545032/DSA-2020-170-Dell-EMC-Data-Domain-Security-Update-for-an-iDRAC-Vulnerability
- https://www.dell.com/support/security/en-us/details/545055/DSA-2020-167-Dell-EMC-Data-Computing-Appliance-DCA-Security-Update-for-Multiple-Third-Party-Com#
- https://www.dell.com/support/security/en-us/details/545057/DSA-2020-171-Dell-EMC-Data-Domain-Security-Update-for-a-BMC-Vulnerability
Rate the content
Share the page
