Impact
Critical
Details
Summary:
The embedded component within the Dell EMC Unity and Dell EMC Unity XT Product Family require security updates to address various vulnerabilities.
The embedded component is updated for the vulnerabilities listed below.
CVE-2016-3189 CVE-2019-12900
CVE-2019-5482
CVE-2019-13012
CVE-2019-13627
CVE-2019-9811 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712
CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719
CVE-2019-11729 CVE-2019-11730
CVE-2018-18311
CVE-2019-6133
CVE-2018-20852 CVE-2019-9636 CVE-2019-10160
For more information about the Common Vulnerability and Exposure (CVE) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.
To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.
The embedded component is updated for the vulnerabilities listed below.
CVE-2016-3189 CVE-2019-12900
CVE-2019-5482
CVE-2019-13012
CVE-2019-13627
CVE-2019-9811 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712
CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719
CVE-2019-11729 CVE-2019-11730
CVE-2018-18311
CVE-2019-6133
CVE-2018-20852 CVE-2019-9636 CVE-2019-10160
For more information about the Common Vulnerability and Exposure (CVE) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.
To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.
Affected Products and Remediation
Affected products:
Dell EMC Unity Operating Environment (OE) versions prior to 5.0.2.0.5.009
Dell EMC Unity XT Operating Environment (OE) versions prior to 5.0.2.0.5.009
Dell EMC Unity VSA Operating Environment (OE) versions prior to 5.0.2.0.5.009
Remediation:
The following Dell EMC Unity releases contain resolution to these vulnerabilities:
- Dell EMC Unity, Dell EMC Unity XT Operating Environment (OE) version 5.0.2.0.5.009.
- Dell EMC UnityVSA Operating Environment (OE) version 5.0.2.0.5.009.
To take advantage of the latest security fixes and enhancements, Dell EMC recommends upgrading to the latest Unity OE code.
Customers can refer to Dell EMC target code information at:
https://support.emc.com/docu39695_Target_Revisions_and_Adoption_Rates.pdf?language=en_US&language=en_US.
Link to Remedies:
Registered Dell EMC Support customers can download Unity software from the Dell EMC Online Support web site:
https://www.dell.com/support/home/us/en/19/product-support/product/unity-family/drivers
Affected products:
Dell EMC Unity Operating Environment (OE) versions prior to 5.0.2.0.5.009
Dell EMC Unity XT Operating Environment (OE) versions prior to 5.0.2.0.5.009
Dell EMC Unity VSA Operating Environment (OE) versions prior to 5.0.2.0.5.009
Remediation:
The following Dell EMC Unity releases contain resolution to these vulnerabilities:
- Dell EMC Unity, Dell EMC Unity XT Operating Environment (OE) version 5.0.2.0.5.009.
- Dell EMC UnityVSA Operating Environment (OE) version 5.0.2.0.5.009.
To take advantage of the latest security fixes and enhancements, Dell EMC recommends upgrading to the latest Unity OE code.
Customers can refer to Dell EMC target code information at:
https://support.emc.com/docu39695_Target_Revisions_and_Adoption_Rates.pdf?language=en_US&language=en_US.
Link to Remedies:
Registered Dell EMC Support customers can download Unity software from the Dell EMC Online Support web site:
https://www.dell.com/support/home/us/en/19/product-support/product/unity-family/drivers
Related Information
Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide
Product Security Information, Dell EMC Unity Family |Dell EMC Unity All Flash, Dell EMC Unity Family, Dell EMC Unity Hybrid