DSA-2024-208: Security Update for Dell NetWorker for Multiple Third-party Component Vulnerabilities.
概要: Dell NetWorker remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
この記事は次に適用されます:
この記事は次には適用されません:
この記事は、特定の製品に関連付けられていません。
すべての製品パージョンがこの記事に記載されているわけではありません。
影響
High
詳細
| Third-party Component | CVEs | More Information |
|---|---|---|
| Apache http client | CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| Apache tomcat | CVE-2023-46589 | http://nvd.nist.gov/CVE-2023-46589 |
影響を受ける製品と修復
| CVEs Addressed | Product | Software/Firmware |
Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions 19.10 through 19.10.0.2 |
Version 19.10.0.3 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions 19.9 through 19.9.0.5 |
Version 19.9.0.6 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions 19.8 through 19.8.0.4 | Version 19.9.0.6 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions prior to 19.8 | Version 19.9.0.6 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVEs Addressed | Product | Software/Firmware |
Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions 19.10 through 19.10.0.2 |
Version 19.10.0.3 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions 19.9 through 19.9.0.5 |
Version 19.9.0.6 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions 19.8 through 19.8.0.4 | Version 19.9.0.6 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2014-3577, CVE-2012-5783, CVE-2020-13956, CVE-2012-6153, CVE-2015-5262, CVE-2023-46589 | NetWorker | NetWorker Server |
Versions prior to 19.8 | Version 19.9.0.6 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
- Platforms: Windows & Linux (All variants and flavors are impacted)
- Versions prior to 19.8 means versions 19.7.x, 19.6.x, 19.5.x, 19.4.x family of releases that are still under standard support. For more information on Dell End-of-Life Documents for converged infrastructure, midrange and enterprise storage, and storage networking products kindly refer to: https://www.dell.com/support/kbdoc/000185734/all-dell-emc-end-of-life-documents?lang=en
- Unless specified as impacted, the term “later releases” encompasses all NetWorker releases, under standard support, that are of a higher minor or major version than the specified release.
- Dell recommends that you always upgrade to the latest release/version for your product
変更履歴
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-05-06 | Initial Release |
| 2.0 | 2024-05-08 | Updated the links under Affected and Remediation section |
| 3.0 | 2024-06-06 | Updated Remediated Version 19.10.0.3 under "Affected Products and Remediation" section |
関連情報
法的免責事項
対象製品
NetWorker Family, NetWorker, NetWorker Series, NetWorker Module文書のプロパティ
文書番号: 000224800
文書の種類: Dell Security Advisory
最終更新: 19 9月 2025
質問に対する他のDellユーザーからの回答を見つける
サポート サービス
お使いのデバイスがサポート サービスの対象かどうかを確認してください。