DSA-2022-103: Dell EMC NetWorker Security Update for Multiple Vulnerabilities
Сводка: Dell EMC NetWorker remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. Only NetWorker Management Console Server and NetWorker Server components are impacted by these vulnerabilities. ...
Данная статья применяется к
Данная статья не применяется к
Эта статья не привязана к какому-либо конкретному продукту.
В этой статье указаны не все версии продуктов.
Влияние
Critical
Подробные сведения
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-29082 | Dell EMC NetWorker versions 19.1.x, 19.2.x, 19.3.x, 19.4.x, 19.5.x, 19.6, 19.6.0.1, 19.6.0.2, and 19.6.1 contain an Improper Validation of Certificate with Host Mismatch vulnerability in RabbitMQ port 5671 which may allow remote attackers to spoof certificates. | 3.7 | CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N |
| Third-Party Component | CVE | More Information |
| Apache HTTP | CVE-2022-22720 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-29082 | Dell EMC NetWorker versions 19.1.x, 19.2.x, 19.3.x, 19.4.x, 19.5.x, 19.6, 19.6.0.1, 19.6.0.2, and 19.6.1 contain an Improper Validation of Certificate with Host Mismatch vulnerability in RabbitMQ port 5671 which may allow remote attackers to spoof certificates. | 3.7 | CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N |
| Third-Party Component | CVE | More Information |
| Apache HTTP | CVE-2022-22720 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
Затронутые продукты и исправление
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell EMC NetWorker | 19.1.x | 19.6.0.3, 19.5.0.7 |
https://www.dell.com/support/home/en-in/product-support/product/networker/drivers |
| 19.2.x | |||
| 19.3.x | |||
| 19.4.x | |||
| 19.5.x | |||
| 19.6 | |||
| 19.6.0.1 | |||
| 19.6.0.2 | |||
| 19.6.1 |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell EMC NetWorker | 19.1.x | 19.6.0.3, 19.5.0.7 |
https://www.dell.com/support/home/en-in/product-support/product/networker/drivers |
| 19.2.x | |||
| 19.3.x | |||
| 19.4.x | |||
| 19.5.x | |||
| 19.6 | |||
| 19.6.0.1 | |||
| 19.6.0.2 | |||
| 19.6.1 |
История изменений
| Revision | Date | Description |
| 1.0 | 2022-04-22 | Initial Release |
| 2.0 | 2022-05-31 | Added 19.5.0.7 as an Updated Version |
Связанная информация
Правовая оговорка
Затронутые продукты
NetWorker Family, NetWorker, Product Security InformationСвойства статьи
Номер статьи: 000198987
Тип статьи: Dell Security Advisory
Последнее изменение: 31 May 2022
Получите ответы на свои вопросы от других пользователей Dell
Услуги технической поддержки
Проверьте, распространяются ли на ваше устройство услуги технической поддержки.