Alert:
When SCOS 7.4.x – 7.5.x is examined with Nessus Security Scan, it may report that the Storage Center is running FreeBSD 11.1 and since support is no longer offered for that OS (oldest supported FreeBSD is version 12.3), it may be vulnerable to new exploits.
SCOS versions 7.4.x through 7.5.x are based on FreeBSD 11.1 and for that reason the Nessus Security Scan will report it with a possible vulnerability. Security scanning software often triggers off of a version string, without confirming that a particular vulnerability is actually present on the system. Compellent/SC is End of Sales Life (EOL) as of August 2021 and there are no plans to upgrade the underlying OS of this EOL code, it's too high of a risk and is not in scope for an EOL product.
There are no specific CVE being mentioned here and being an EOL product, there's no plan to update the Operating System.
Affected versions:
All SCOS versions 7.4.x through 7.5.x.
Workaround:
Disregard the warning from Nessus security scans that identify SCOS 7.4.x through 7.5.x as derived from FreeBSD 11.1.
Resolution:
Compellent/SC is End of Sales Life (EOL) as of August 2021 and there are no plans to upgrade the underlying OS of this EOL code, it's too high of a risk and is not in scope for an EOL product.