DSA-2025-077 : Security Update for Dell CloudBoost Virtual Appliance Multiple Component Vulnerabilities.

Shrnutí: Dell CloudBoost Virtual Appliance remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Tento článek se vztahuje na Tento článek se nevztahuje na Tento článek není vázán na žádný konkrétní produkt. V tomto článku nejsou uvedeny všechny verze produktu.
Podívejte se na další zdroje

Vliv

High

Podrobnosti

Third-party Component

CVEs

More Information

Apparmor

CVE-2016-1585

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Linux kernel’s

CVE-2021-2163, CVE-2023-27043

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Oracle JDK

CVE-2022-21449, CVE-2022-34169, CVE-2023-21930, CVE-2023-25193, CVE-2024-20918, CVE-2024-20952, CVE-2022-48622, CVE-2022-40433

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Snakeyaml

CVE-2022-25857, CVE-2022-38749, CVE-2022-38750, CVE-2022-38751

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Busybox

CVE-2022-48174

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Ruby-rack

CVE-2023-27530, CVE-2023-27539, CVE-2024-25126, CVE-2024-26141, CVE-2024-26146

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

amd64-microcode

CVE-2023-31315, CVE-2024-23984

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

libtiff5

CVE-2023-3164, CVE-2024-7006

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Python

CVE-2024-0397, CVE-2024-37891, CVE-2024-4032, CVE-2024-41810, CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, CVE-2024-45230, CVE-2024-45231, CVE-2024-6232, CVE-2024-6345, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

intel-microcode

CVE-2024-24968

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Libkrb

CVE-2024-37370, CVE-2024-37371

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Ruby2.7

CVE-2024-41946, CVE-2024-49761

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

vim

CVE-2024-41957, CVE-2024-43374, CVE-2024-43802, CVE-2024-47814

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Libexpat

CVE-2024-45490, CVE-2024-45491, CVE-2024-45492

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Libsoup

CVE-2024-52530, CVE-2024-52531, CVE-2024-52532

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Libglib

CVE-2024-52533

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

wpasupplicant

CVE-2024-5290

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

libssl

CVE-2024-5535

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Nano

CVE-2024-5742

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Gtk

CVE-2024-6655

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Curl

CVE-2024-7264, CVE-2024-8096

See NVD link below for individual scores for each CVE.

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Společnost Dell Technologies všem zákazníkům doporučuje vzít v úvahu základní hodnocení CVSS i všechna související hodnocení v daném čase a prostředí, která mohou mít vliv na potenciální závažnost dané konkrétní bezpečnostní hrozby.

Dotčené produkty a náprava

Product

Affected Versions

Remediated Versions

Link

CloudBoost Virtual Appliance

Versions 19.7 through 19.11.0.1

Version 19.12 or later

https://dl.dell.com/downloads/3YKP0_CloudBoost-19.12.0.0-Appliance-Upgrade-package.tar

Product

Affected Versions

Remediated Versions

Link

CloudBoost Virtual Appliance

Versions 19.7 through 19.11.0.1

Version 19.12 or later

https://dl.dell.com/downloads/3YKP0_CloudBoost-19.12.0.0-Appliance-Upgrade-package.tar

Historie změn

Revision

Date

Description

1.0

2025-02-06

Initial Release

Související informace

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Právní upozornění

Dotčené produkty

CloudBoost, CloudBoost Virtual Appliance, Data Protection Suite Series
Vlastnosti článku
Číslo článku: 000281747
Typ článku: Dell Security Advisory
Poslední úprava: 09 zář 2025
Najděte odpovědi na své otázky od ostatních uživatelů společnosti Dell
Služby podpory
Zkontrolujte, zda se na vaše zařízení vztahují služby podpory.