DSA-2022-167: Dell Connectrix Security Update for Multiple Vulnerabilities

Oversigt: Dell Connectrix (Cisco) remediation is available for multiple Spring vulnerabilities that may be exploited by malicious users to compromise the affected system.

Denne artikel gælder for Denne artikel gælder ikke for Denne artikel er ikke knyttet til et bestemt produkt. Det er ikke alle produktversioner, der er identificeret i denne artikel.
Udforsk andre ressourcer

Virkning

Critical

Oplysninger

 Third-party Component CVEs More information
Spring Cloud Function CVE-2022-22963 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22963 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
Spring MVC or Spring WebFlux application CVE-2022-22965 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22965 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
 Third-party Component CVEs More information
Spring Cloud Function CVE-2022-22963 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22963 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
Spring MVC or Spring WebFlux application CVE-2022-22965 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22965 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
Dell Technologies anbefaler, at alle kunder tager hensyn til både CVSS-basisresultatet og alle relevante tidsmæssige og miljømæssige resultater, som kan have betydning for den potentielle alvorsgrad, der er forbundet med en bestemt sikkerhedsrisiko.

Berørte produkter og udbedring

CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-22963 Connectrix (Cisco) DCNM and NDFC
 		 DCNM versions before 11.5(4) and NDFC versions before 12.0(2f)
 		 NDFC 12.1(1e) Support for Connectrix | Drivers & Downloads | Dell US
CVE-2022-22965
CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-22963 Connectrix (Cisco) DCNM and NDFC
 		 DCNM versions before 11.5(4) and NDFC versions before 12.0(2f)
 		 NDFC 12.1(1e) Support for Connectrix | Drivers & Downloads | Dell US
CVE-2022-22965

Revisionshistorik

RevisionDateDescription
1.02022-07-19Initial Release
2.02023-02-14Corrected "Affected Product" section under "Article Properties."

Relaterede oplysninger

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Ansvarsfraskrivelse

Berørte produkter

Connectrix MDS-Series, Connectrix MDS-9132T, Connectrix MDS-9148S, Connectrix MDS-9148T, Connectrix MDS-9220i, Connectrix MDS-9250i, Connectrix MDS-9396S, Connectrix MDS-9396S PSI, Connectrix MDS-9396T, Connectrix MDS-9706, Connectrix MDS-9706-V2 , Connectrix MDS-9710, Connectrix MDS-9710-V2, Connectrix MDS-9718, Connectrix MDS-9718-V3, Connectrix MDS-Series Data Center Network Manager, Connectrix MDS-Series Nexus Dashboard Fabric Controller, Product Security Information ...
Artikelegenskaber
Artikelnummer: 000201622
Artikeltype: Dell Security Advisory
Senest ændret: 18 sep. 2025
Find svar på dine spørgsmål fra andre Dell-brugere
Supportservices
Kontrollér, om din enhed er dækket af supportservices.