The official site for Saudi CERT
Dell EMC Alert
2699
Warning Date
Severity Level
Warning Number
Target Sector
3 May, 2022
● Critical
2022-4764
All
Dell EMC has released security updates to address several vulnerabilities in the following products:
- Cloud Tiering Appliance
- 13.0
- 13.1
- Dell EMC AppSync
- 4.2.0.0
- 4.3.0.0
- vRO Plug-in for Dell EMC PowerScale
- 1.0.4
- 1.1.1
- 1.1.2
- 1.1.4
- 1.1.5
- vRO Plug-in for Dell EMC Unity
- 1.0.6
- 1.0.7
- 1.0.8
- vRO Plug-in for Dell EMC PowerMax
- 1.2.4
- 1.2.5
- vRO Plug-in for Dell EMC XtremIO
- 4.1.1
- 4.1.2
- 4.1.3
An attacker could exploit these vulnerabilities by doing the following:
- Denial of Service (DoS) attack
- Remote code execution
The CERT team encourages users to review Dell EMC security advisory and apply the necessary updates:
- https://www.dell.com/support/kbdoc/en-us/000199084/dsa-2022-111-dell-emc-cloud-tiering-appliance-security-update-for-third-party-component-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000199089/dsa-2022-104-dell-emc-appsync-security-update-for-a-spring-spring4shell-or-springshell-vulnerability
- https://www.dell.com/support/kbdoc/en-us/000199086/dsa-2022-113-vrealize-orchestrator-vro-plug-ins-for-dell-emc-storage-security-update-for-spring-rce-vulnerabilities
Rate the content
Share the page
