Dell EMC Update
9486Warning Date
Severity Level
Warning Number
Target Sector
29 August, 2019
● Critical
2019-376
All
Description:
Dell EMC has released an update to address multiple vulnerabilities in the following products:
- Dell EMC VNXe3200 Operating Environment (OE) 3.1.10.9946299 versions prior to
- Dell EMC Unity Operating Environment (OE) versions prior to 5.0.0.0.5.116
- Dell EMC UnityVSA Operating Environment (OE) versions prior to 5.0.0.0.5.116
- Dell EMC VNXe3200 Operating Environment (OE) versions prior to 3.1.10.9946299
- Dell EMC Enterprise Copy Data Management (eCDM) version 1.0, 1.1, 2.0, 2.1, 3.0
- Dell EMC ESRS Virtual Edition versions prior to 3.38.00.06.
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Disruption of service
- Execute arbitrary code
- Disclosure of information
- Unauthorized modification
- Man-in-the-Middle (MitM) attack
Best practice and Recommendations:
The CERT team encourages to update and check the affected product details according to the link below: