Article Number: 000212409
DSA-2023-140: Dell EMC PowerProtect Cyber Recovery Security Update for Multiple Third-party Vulnerabilities
Summary: Dell EMC PowerProtect Cyber Recovery remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system
Article Content
Impact
Critical
Details
| Third-Party Component |
CVEs | More information |
| Debian GNU/Linux, Alpine Linux | See Release Notes | See NVD (http://nvd.nist.gov/)  for individual scores for each CVE |
Note: These vulnerabilities pertain to Third-party Golang packages and Cyber Recovery Docker containers and not the management host itself.
| Third-Party Component |
CVEs | More information |
| Debian GNU/Linux, Alpine Linux | See Release Notes | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
Note: These vulnerabilities pertain to Third-party Golang packages and Cyber Recovery Docker containers and not the management host itself.
Affected Products and Remediation
| Product | Affected Versions | Updated Version | Link to update |
| PowerProtect Cyber Recovery | Versions before 19.13 | 19.13 | Cyber Recovery Downloads |
| Product | Affected Versions | Updated Version | Link to update |
| PowerProtect Cyber Recovery | Versions before 19.13 | 19.13 | Cyber Recovery Downloads |
Revision History
| Revision | Date | Description |
| 1.0 | 2023-04-14 | Initial Release |
| 2.0 | 2023-04-17 | Updated the Release Notes Link |
Related Information
Legal Information
Article Properties
Affected Product
PowerProtect Cyber Recovery, Cyber Recovery Series, Product Security Information
Last Published Date
17 Apr 2023
Version
2
Article Type
Dell Security Advisory