The official site for Saudi CERT
Dell Alert
3204
Warning Date
Severity Level
Warning Number
Target Sector
1 June, 2022
● Critical
2022-4899
All
Description:
Dell EMC has released security update to address several vulnerabilities in its products,mainly:
- Dell Unisphere Central
- Dell EMC PowerScale OneFS
- Dell PowerEdge Server
- Dell BSAFE™ Micro Edition Suite
- Dell EMC NetWorker
- Dell PowerEdge Server BIOS
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Buffer overflow
- Excuate Arbirtary Code - remotely
Best practice and Recommendations:
The CERT team encourages users to review Dell EMC security advisory and apply the necessary update, mainly:
- DSA-2022-152: Dell Unisphere Central Security Update for Multiple Third-Party Component Vulnerabilities | Dell US
- DSA-2022-082: Dell EMC PowerScale OneFS Security Weak Password Requirement Vulnerability | Dell US
- DSA-2021-109: Dell PowerEdge Server Security Update for 2021.1 Intel Platform Update (IPU) | Dell US
- DSA-2022-127: Dell PowerEdge Server BIOS Security Updates for Intel May 2022 Security Advisories | Dell US
- DSA-2020-245: Dell BSAFE™ Micro Edition Suite Multiple Vulnerabilities | Dell US
- DSA-2022-103: Dell EMC NetWorker Security Update for Multiple Vulnerabilities | Dell US
- DSA-2022-088: Dell PowerEdge Server BIOS Security Update for Multiple Tianocore EDK2 Vulnerabilities | Dell US
Rate the content
Share the page
