DSA-2024-436: Security Update for Dell Connectrix Cisco MDS 9000 Series Multiple Third-Party Component Vulnerabilities

Summary: Dell Connectrix Cisco MDS 9000 Series remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Critical

Details

 

Third-party Component CVEs More Information
Rest API and web UI CVE-2024-20432 Cisco Security Advisory for CVE-2024-20432This hyperlink is taking you to a website outside of Dell Technologies.
Code Execution CVE-2024-20449 Cisco Security Advisory for CVE-2024-20449This hyperlink is taking you to a website outside of Dell Technologies.
REST API CVE-2024-20438, CVE-2024-20441, CVE-2024-20442 Cisco Security Advisory for CVE-2024-20438, CVE-2024-20441, CVE-2024-20442This hyperlink is taking you to a website outside of Dell Technologies.
Logging Functions CVE-2024-20490, CVE-2024-20491 Cisco Security Advisory for CVE-2024-20490, CVE-2024-20491This hyperlink is taking you to a website outside of Dell Technologies.
REST API Command Injection CVE-2024-20444 Cisco Security Advisory for CVE-2024-20444This hyperlink is taking you to a website outside of Dell Technologies.
Configuration Backup Information Disclosure CVE-2024-20448 Cisco Security Advisory for CVE-2024-20448This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Software/Firmware Affected Versions Remediated Versions Link
Connectrix MDS-9124V NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9124v/drivers
Connectrix MDS-9148V NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9148v/drivers
Connectrix MDS-9396V NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9396v/drivers
Connectrix MDS-9706-V2 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9706-v2/drivers
Connectrix MDS-9710-V2 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9710-v2/drivers
Connectrix MDS-9718-V3 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9718-v3/drivers
Connectrix MDS-9132T NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9132t/drivers
Connectrix MDS-9148T NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9148t/drivers
Connectrix MDS-9396T NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9396t/drivers
Connectrix MDS-9148S NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9148s/drivers
Connectrix MDS-9250i NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9250i/drivers
Connectrix MDS-9396S NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9396s/drivers
Connectrix MDS-9706 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9706/drivers
Connectrix MDS-9710 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9710/drivers
Connectrix MDS-9718 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9718/drivers
Product Software/Firmware Affected Versions Remediated Versions Link
Connectrix MDS-9124V NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9124v/drivers
Connectrix MDS-9148V NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9148v/drivers
Connectrix MDS-9396V NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9396v/drivers
Connectrix MDS-9706-V2 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9706-v2/drivers
Connectrix MDS-9710-V2 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9710-v2/drivers
Connectrix MDS-9718-V3 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9718-v3/drivers
Connectrix MDS-9132T NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9132t/drivers
Connectrix MDS-9148T NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9148t/drivers
Connectrix MDS-9396T NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9396t/drivers
Connectrix MDS-9148S NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9148s/drivers
Connectrix MDS-9250i NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9250i/drivers
Connectrix MDS-9396S NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9396s/drivers
Connectrix MDS-9706 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9706/drivers
Connectrix MDS-9710 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9710/drivers
Connectrix MDS-9718 NDFC Versions 12.0 through 12.2.1 Version 12.2.2 or later https://www.dell.com/support/home/product-support/product/connectrix-mds-9718/drivers

Revision History

RevisionDateDescription
1.02024-11-14Initial Release

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Connectrix MDS-9124V, Connectrix MDS-9148V, Connectrix MDS-9250i, Connectrix MDS-9396V, Connectrix MDS-9706, Connectrix MDS-9706-V2, Connectrix MDS-9710, Connectrix MDS-9710-V2, Connectrix MDS-9718, Connectrix MDS-9718-V3, Connectrix MDS 9132T , Connectrix MDS 9148S, Connectrix MDS 9148T, Connectrix MDS 9396T ...
Article Properties
Article Number: 000248040
Article Type: Dell Security Advisory
Last Modified: 14 Nov 2024
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.