The official site for Saudi CERT
Dell EMC Updates
2677
Warning Date
Severity Level
Warning Number
Target Sector
7 November, 2021
● Critical
2021-3812
All
Description:
Dell EMC has released security updates to address multiple vulnerabilities in the following products:
- Dell EMC VxRail Appliance
- 7.0.x versions before 7.0.300
- DLm8500 & DLm2500
- DLm Release 5.4.0.0 or earlier with DLm Security 5.4.0.0 or earlier
- PowerFlex Appliance
- Intelligent_Catalog_38_356_00_r10
- Intelligent_Catalog_38_362_00_r7
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Denial of service (DoS)
- Cross-site scripting (XSS)
- SQL injection
- Redirect a user to a malicious web page
- Information disclosure
- Privilege escalation
Best practice and Recommendations:
The CERT team encourages users to review DELL EMC security advisory and apply the necessary updates:
- https://www.dell.com/support/kbdoc/en-us/000193205/dsa-2021-231-dell-emc-vxrail-security-update-for-multiple-third-party-component-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000193245/dsa-2021-225-dell-emc-disk-library-for-mainframe-security-update-for-2021-1-intel-platform-update-ipu-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000193276/dsa-2021-241-dell-emc-powerflex-appliance-security-update-for-multiple-third-party-component-vulnerabilities
Rate the content
Share the page
