Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.

Article Number: 000196956


DSA-2022-049: Dell EMC SRM and Dell EMC Storage Monitoring and Reporting (SMR) Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Multiple components within Dell EMC SRM and Dell EMC SMR require a security update to address various vulnerabilities.

Article Content


Impact

Critical

Details

Third-party Component CVEs More information (check the below links for individual CVE scores) 
SuSE Linux Binaries
*Only for vApp.
CVE-2018-25020 https://www.suse.com/security/cve/CVE-2018-25020.html
CVE-2018-13405 https://www.suse.com/security/cve/CVE-2018-13405.html
CVE-2019-15126 https://www.suse.com/security/cve/CVE-2019-15126.html
CVE-2019-18218 https://www.suse.com/security/cve/CVE-2019-18218.html
CVE-2020-25613 https://www.suse.com/security/cve/CVE-2020-25613.html
CVE-2020-27820 https://www.suse.com/security/cve/CVE-2020-27820.html
CVE-2021-0920 https://www.suse.com/security/cve/CVE-2021-0920.html
CVE-2021-0935 https://www.suse.com/security/cve/CVE-2021-0935.html
CVE-2021-0941 https://www.suse.com/security/cve/CVE-2021-0941.html
CVE-2021-3542 https://www.suse.com/security/cve/CVE-2021-3542.html
CVE-2021-3655 https://www.suse.com/security/cve/CVE-2021-3655.html
CVE-2021-3760 https://www.suse.com/security/cve/CVE-2021-3760.html
CVE-2021-3715 https://www.suse.com/security/cve/CVE-2021-3715.html
CVE-2021-4034 https://www.suse.com/security/cve/CVE-2021-4034.html
CVE-2021-20322 https://www.suse.com/security/cve/CVE-2021-20322.html
CVE-2021-28711 https://www.suse.com/security/cve/CVE-2021-28711.html
CVE-2021-28712 https://www.suse.com/security/cve/CVE-2021-28712.html
CVE-2021-28713 https://www.suse.com/security/cve/CVE-2021-28713.html
CVE-2021-28714 https://www.suse.com/security/cve/CVE-2021-28714.html
CVE-2021-28715 https://www.suse.com/security/cve/CVE-2021-28715.html
CVE-2021-31799 https://www.suse.com/security/cve/CVE-2021-31799.html
CVE-2021-31810 https://www.suse.com/security/cve/CVE-2021-31810.html
CVE-2021-31916 https://www.suse.com/security/cve/CVE-2021-31916.html
CVE-2021-32066 https://www.suse.com/security/cve/CVE-2021-32066.html
CVE-2021-33033 https://www.suse.com/security/cve/CVE-2021-33033.html
CVE-2021-33098 https://www.suse.com/security/cve/CVE-2021-33098.html
CVE-2021-34556 https://www.suse.com/security/cve/CVE-2021-34556.html
CVE-2021-34981 https://www.suse.com/security/cve/CVE-2021-34981.html
CVE-2021-35477 https://www.suse.com/security/cve/CVE-2021-35477.html
CVE-2021-37159 https://www.suse.com/security/cve/CVE-2021-37159.html
CVE-2021-41617 https://www.suse.com/security/cve/CVE-2021-41617.html
CVE-2021-41864 https://www.suse.com/security/cve/CVE-2021-41864.html
CVE-2021-42008 https://www.suse.com/security/cve/CVE-2021-42008.html
CVE-2021-42252 https://www.suse.com/security/cve/CVE-2021-42252.html
CVE-2021-42739 https://www.suse.com/security/cve/CVE-2021-42739.html
CVE-2021-43527 https://www.suse.com/security/cve/CVE-2021-43527.html
CVE-2021-43975 https://www.suse.com/security/cve/CVE-2021-43975.html
CVE-2021-43976 https://www.suse.com/security/cve/CVE-2021-43976.html
CVE-2021-45485 https://www.suse.com/security/cve/CVE-2021-45485.html
CVE-2021-45486 https://www.suse.com/security/cve/CVE-2021-45486.html
CVE-2021-45960 https://www.suse.com/security/cve/CVE-2021-45960.html
CVE-2021-46143 https://www.suse.com/security/cve/CVE-2021-46143.html
CVE-2022-22822 https://www.suse.com/security/cve/CVE-2022-22822.html
CVE-2022-22823 https://www.suse.com/security/cve/CVE-2022-22823.html
CVE-2022-22824 https://www.suse.com/security/cve/CVE-2022-22824.html
CVE-2022-22825 https://www.suse.com/security/cve/CVE-2022-22825.html
CVE-2022-22826 https://www.suse.com/security/cve/CVE-2022-22826.html
CVE-2022-22827 https://www.suse.com/security/cve/CVE-2022-22827.html
Log4j CVE-2019-17571 https://nvd.nist.gov/vuln/detail/CVE-2019-17571
CVE-2021-4104 https://nvd.nist.gov/vuln/detail/CVE-2021-4104
CVE-2022-23302 https://nvd.nist.gov/vuln/detail/CVE-2022-23302
CVE-2022-23305 https://nvd.nist.gov/vuln/detail/CVE-2022-23305
CVE-2022-23307 https://nvd.nist.gov/vuln/detail/CVE-2022-23307
CVE-2021-44832 https://nvd.nist.gov/vuln/detail/CVE-2021-44832
Third-party Component CVEs More information (check the below links for individual CVE scores) 
SuSE Linux Binaries
*Only for vApp.
CVE-2018-25020 https://www.suse.com/security/cve/CVE-2018-25020.html
CVE-2018-13405 https://www.suse.com/security/cve/CVE-2018-13405.html
CVE-2019-15126 https://www.suse.com/security/cve/CVE-2019-15126.html
CVE-2019-18218 https://www.suse.com/security/cve/CVE-2019-18218.html
CVE-2020-25613 https://www.suse.com/security/cve/CVE-2020-25613.html
CVE-2020-27820 https://www.suse.com/security/cve/CVE-2020-27820.html
CVE-2021-0920 https://www.suse.com/security/cve/CVE-2021-0920.html
CVE-2021-0935 https://www.suse.com/security/cve/CVE-2021-0935.html
CVE-2021-0941 https://www.suse.com/security/cve/CVE-2021-0941.html
CVE-2021-3542 https://www.suse.com/security/cve/CVE-2021-3542.html
CVE-2021-3655 https://www.suse.com/security/cve/CVE-2021-3655.html
CVE-2021-3760 https://www.suse.com/security/cve/CVE-2021-3760.html
CVE-2021-3715 https://www.suse.com/security/cve/CVE-2021-3715.html
CVE-2021-4034 https://www.suse.com/security/cve/CVE-2021-4034.html
CVE-2021-20322 https://www.suse.com/security/cve/CVE-2021-20322.html
CVE-2021-28711 https://www.suse.com/security/cve/CVE-2021-28711.html
CVE-2021-28712 https://www.suse.com/security/cve/CVE-2021-28712.html
CVE-2021-28713 https://www.suse.com/security/cve/CVE-2021-28713.html
CVE-2021-28714 https://www.suse.com/security/cve/CVE-2021-28714.html
CVE-2021-28715 https://www.suse.com/security/cve/CVE-2021-28715.html
CVE-2021-31799 https://www.suse.com/security/cve/CVE-2021-31799.html
CVE-2021-31810 https://www.suse.com/security/cve/CVE-2021-31810.html
CVE-2021-31916 https://www.suse.com/security/cve/CVE-2021-31916.html
CVE-2021-32066 https://www.suse.com/security/cve/CVE-2021-32066.html
CVE-2021-33033 https://www.suse.com/security/cve/CVE-2021-33033.html
CVE-2021-33098 https://www.suse.com/security/cve/CVE-2021-33098.html
CVE-2021-34556 https://www.suse.com/security/cve/CVE-2021-34556.html
CVE-2021-34981 https://www.suse.com/security/cve/CVE-2021-34981.html
CVE-2021-35477 https://www.suse.com/security/cve/CVE-2021-35477.html
CVE-2021-37159 https://www.suse.com/security/cve/CVE-2021-37159.html
CVE-2021-41617 https://www.suse.com/security/cve/CVE-2021-41617.html
CVE-2021-41864 https://www.suse.com/security/cve/CVE-2021-41864.html
CVE-2021-42008 https://www.suse.com/security/cve/CVE-2021-42008.html
CVE-2021-42252 https://www.suse.com/security/cve/CVE-2021-42252.html
CVE-2021-42739 https://www.suse.com/security/cve/CVE-2021-42739.html
CVE-2021-43527 https://www.suse.com/security/cve/CVE-2021-43527.html
CVE-2021-43975 https://www.suse.com/security/cve/CVE-2021-43975.html
CVE-2021-43976 https://www.suse.com/security/cve/CVE-2021-43976.html
CVE-2021-45485 https://www.suse.com/security/cve/CVE-2021-45485.html
CVE-2021-45486 https://www.suse.com/security/cve/CVE-2021-45486.html
CVE-2021-45960 https://www.suse.com/security/cve/CVE-2021-45960.html
CVE-2021-46143 https://www.suse.com/security/cve/CVE-2021-46143.html
CVE-2022-22822 https://www.suse.com/security/cve/CVE-2022-22822.html
CVE-2022-22823 https://www.suse.com/security/cve/CVE-2022-22823.html
CVE-2022-22824 https://www.suse.com/security/cve/CVE-2022-22824.html
CVE-2022-22825 https://www.suse.com/security/cve/CVE-2022-22825.html
CVE-2022-22826 https://www.suse.com/security/cve/CVE-2022-22826.html
CVE-2022-22827 https://www.suse.com/security/cve/CVE-2022-22827.html
Log4j CVE-2019-17571 https://nvd.nist.gov/vuln/detail/CVE-2019-17571
CVE-2021-4104 https://nvd.nist.gov/vuln/detail/CVE-2021-4104
CVE-2022-23302 https://nvd.nist.gov/vuln/detail/CVE-2022-23302
CVE-2022-23305 https://nvd.nist.gov/vuln/detail/CVE-2022-23305
CVE-2022-23307 https://nvd.nist.gov/vuln/detail/CVE-2022-23307
CVE-2021-44832 https://nvd.nist.gov/vuln/detail/CVE-2021-44832

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Product Affected Versions Updated Versions Link to Update  
Dell EMC SRM Versions before 4.7.0.1
 
4.7.0.1 https://support.emc.com/downloads/34247_SRM
 
 
 
Dell EMC SRM Vapp Versions before 4.7.0.1
 
4.7.0.1 https://support.emc.com/downloads/34247_SRM
 
 
Dell EMC SMR Versions before 4.7.0.1 4.7.0.1 https://support.emc.com/downloads/40532_SMR  
Dell EMC SMR Vapp Versions before 4.7.0.1 4.7.0.1 https://support.emc.com/downloads/40532_SMR  
 
Product Affected Versions Updated Versions Link to Update  
Dell EMC SRM Versions before 4.7.0.1
 
4.7.0.1 https://support.emc.com/downloads/34247_SRM
 
 
 
Dell EMC SRM Vapp Versions before 4.7.0.1
 
4.7.0.1 https://support.emc.com/downloads/34247_SRM
 
 
Dell EMC SMR Versions before 4.7.0.1 4.7.0.1 https://support.emc.com/downloads/40532_SMR  
Dell EMC SMR Vapp Versions before 4.7.0.1 4.7.0.1 https://support.emc.com/downloads/40532_SMR  
 
Revision History

RevisionDateDescription
1.02022-03-03DSA for Dell EMC SRM/SMR

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


Article Properties


Affected Product

EMC Storage Monitoring and Reporting, SRM, Product Security Information, SRM

Product

Storage Monitoring and Reporting

Last Published Date

03 Mar 2022

Version

1

Article Type

Dell Security Advisory