Skip to main content

DSN-2024-001

Summary: OpenSSH regreSSHion (CVE-2024-6387) Impact on Dell Products

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.

Security Article Type

Security KB

CVE Identifier

CVE-2024-6387

Issue Summary

Dell Technologies is reviewing the recent disclosure regarding the regreSSHion vulnerability in OpenSSH (CVE-2024-6387 This hyperlink is taking you to a website outside of Dell Technologies.). This disclosure was accompanied by an OpenSSH release. Details from the OpenSSH maintainers can be found in their official release notes This hyperlink is taking you to a website outside of Dell Technologies.

The OpenSSH maintainers have noted that while the vulnerability has been successfully exploited in lab conditions, on 32-bit Linux systems based on glibc using ASLR protections, the exploit required an average of six to eight hours of continuous attack attempts at maximum throughput of the attacked server.

The security of our products is a top priority and critical to protecting our customers. We will communicate any security updates or mitigations, if necessary, at https://www.dell.com/support/security.

Recommendations

Dell recommends customers subscribe to be notified when Dell Security Advisories are published on the Dell Security Advisories, Notices and Resources page. Learn more here, How to Subscribe to Dell Security Advisories.

Affected Products

Product Security Information
Article Properties
Article Number: 000226708
Article Type: Security KB
Last Modified: 05 Jul 2024
Version:  2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.