DSA-2024-085: Security Update for Dell Avamar Server, Avamar Virtual Edition, Integrated Data Protection Appliance for Apache Struts 2 Vulnerability

Resumen: Dell Avamar server, Dell Avamar Virtual Edition and Dell Integrated Data Protection Appliance (IDPA) remediation is available for Apache Struts 2 security vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.
Consulte estos recursos

Impacto

Critical

Detalles

Third-party Component CVEs More Information
Apache Struts 2 CVE-2023-50164 https://nvd.nist.gov/vuln/detail/CVE-2023-50164This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2023-50164
 		 Dell Avamar Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.10 Cumulative Hotfix-338823 https://dl.dell.com/downloads/8X3C5_Avamar-19.10-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338823,-April-2024.zip
CVE-2023-50164
 		 Dell Avamar Version 19.4,19.7,19.8,19.9 and19.10 Version 19.9 Cumulative Hotfix-338791 https://dl.dell.com/downloads/44T9X_Avamar-19.9-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338791,-Jan-2024.zip
CVE-2023-50164
 		 Dell Avamar Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.8 Cumulative Hotfix- 338808 https://dl.dell.com/downloads/9N8NK_Avamar-19.8-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338808,-Mar-2024.zip
CVE-2023-50164
 		 Avamar 19.10 Virtual Edition for VMware ESXi and vSphere Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.10 Cumulative Hotfix-338823 https://dl.dell.com/downloads/8X3C5_Avamar-19.10-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338823,-April-2024.zip
CVE-2023-50164
 		 Avamar 19.10 Virtual Edition for VMware ESXi and vSphere Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.9 Cumulative Hotfix-338791 https://dl.dell.com/downloads/44T9X_Avamar-19.9-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338791,-Jan-2024.zip

CVE-2023-50164
 		 Avamar 19.10 Virtual Edition for VMware ESXi and vSphere Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.8 Cumulative Hotfix- 338808 https://dl.dell.com/downloads/9N8NK_Avamar-19.8-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338808,-Mar-2024.zip
CVE-2023-50164 Integrated Data Protection Appliance (PowerProtect DP Series) Version 2.7.4 and prior Version 2.7.6 with Avamar 19.9 Cumulative Hotfix 338791 Link to PowerProtect DP Series Software
Support for PowerProtect Data Protection Software | Drivers & Downloads | Dell US
Link to Avamar 19.9 HF
https://dl.dell.com/downloads/44T9X_Avamar-19.9-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338791,-Jan-2024.zip
CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2023-50164
 		 Dell Avamar Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.10 Cumulative Hotfix-338823 https://dl.dell.com/downloads/8X3C5_Avamar-19.10-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338823,-April-2024.zip
CVE-2023-50164
 		 Dell Avamar Version 19.4,19.7,19.8,19.9 and19.10 Version 19.9 Cumulative Hotfix-338791 https://dl.dell.com/downloads/44T9X_Avamar-19.9-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338791,-Jan-2024.zip
CVE-2023-50164
 		 Dell Avamar Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.8 Cumulative Hotfix- 338808 https://dl.dell.com/downloads/9N8NK_Avamar-19.8-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338808,-Mar-2024.zip
CVE-2023-50164
 		 Avamar 19.10 Virtual Edition for VMware ESXi and vSphere Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.10 Cumulative Hotfix-338823 https://dl.dell.com/downloads/8X3C5_Avamar-19.10-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338823,-April-2024.zip
CVE-2023-50164
 		 Avamar 19.10 Virtual Edition for VMware ESXi and vSphere Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.9 Cumulative Hotfix-338791 https://dl.dell.com/downloads/44T9X_Avamar-19.9-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338791,-Jan-2024.zip

CVE-2023-50164
 		 Avamar 19.10 Virtual Edition for VMware ESXi and vSphere Version 19.4,19.7,19.8,19.9 and 19.10 Version 19.8 Cumulative Hotfix- 338808 https://dl.dell.com/downloads/9N8NK_Avamar-19.8-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338808,-Mar-2024.zip
CVE-2023-50164 Integrated Data Protection Appliance (PowerProtect DP Series) Version 2.7.4 and prior Version 2.7.6 with Avamar 19.9 Cumulative Hotfix 338791 Link to PowerProtect DP Series Software
Support for PowerProtect Data Protection Software | Drivers & Downloads | Dell US
Link to Avamar 19.9 HF
https://dl.dell.com/downloads/44T9X_Avamar-19.9-Avamar-Cumulative-Hotfix-for-Avamar-Server,-including-Avamar-Virtual-Edition---hotfix-338791,-Jan-2024.zip
  • Customers who want to remediate the security vulnerabilities are advised to install the latest 19.9 Cumulative Hotfix for Dell Avamar server and Dell Avamar Virtual Edition.
  • The CVEs remedied by this security update are listed in the Release Notes.  The Release Notes list not only the new CVEs remedied by this update, but all the past CVEs included in this cumulative update. 
  • To schedule platform security patch installation, or to upgrade your server, contact Dell Customer Support at https://www.dell.com/support/home/en-us/
  • Dell recommends that you always upgrade to the latest release/version for your product.

Historial de revisiones

Revision DateDescription
1.02024-02-23Initial Release
2.02024-04-01Updated Remediation link for Version 19.8 Cumulative Hotfix- 338808
3.02024-04-17Updated "Affected Products and Remediation" table for Version 19.10 Cumulative Hotfix-338807
4.02024-05-15Updated "Affected Products and Remediation" table for Version 19.10 Cumulative Hotfix-338823

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

Avamar, Avamar, Avamar Server, Avamar Virtual Edition, Integrated Data Protection Appliance Family, Integrated Data Protection Appliance Software, Product Security Information
Propiedades del artículo
Número del artículo: 000222406
Tipo de artículo: Dell Security Advisory
Última modificación: 06 nov 2025
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.