The official site for Saudi CERT
Dell EMC Updates
3222
Warning Date
Severity Level
Warning Number
Target Sector
29 December, 2021
● Critical
2021-4154
All
DELL EMC has released security updates to address Apache Log4j vulnerability in the following product:
- Connectrix MDS-DCNM
- Versions prior to 11.5(1x)
- Storage Center - Dell Storage Manager
- 16.x
- 17.x
- 18.x
- 19.x
- 20.1.1
- Dell EMC Unity, Dell EMC Unity VSA, and Dell EMC Unity XT
- Before 5.1.2.0.5.007
- Nutanix AOS 6.0 STS (Short Term Support) Branch only
- STS versions before 6.0.2.4
- Nutanix Objects
- All versions
A remote attacker could exploit this vulnerability by executing arbitrary code.
The CERT team encourages users to review DELL EMC security advisory and apply the necessary updates:
- https://www.dell.com/support/kbdoc/en-us/000194797/dsa-2021-302-dell-connectrix-mds-dcnm-security-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228
- https://www.dell.com/support/kbdoc/en-us/000194790/dsa-2021-310-storage-center-dell-storage-manager-security-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228-cve-2021-45046
- https://www.dell.com/support/kbdoc/en-us/000194822/dsa-2021-311-dell-emc-xc-series-and-core-appliance-security-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228-cve-2021-45046-and-cve-2021-451054
- https://www.dell.com/support/kbdoc/en-us/000194826/dsa-2021-294-dell-emc-unity-dell-emc-unityvsa-and-dell-emc-unity-xt-security-update-for-apache-log4j-remote-code-execution-vulnerability-cve-2021-44228-cve-2021-45046-and-cve-2021-45105
- https://www.dell.com/support/kbdoc/en-us/000194836/dsa-2021-271-dell-emc-unity-dell-emc-unity-vsa-and-dell-emc-unity-xt-security-update-for-multiple-vulnerabilities
Rate the content
Share the page
