Dell Storage Resource Manager (SRM) False Positive Security Vulnerabilities

Summary: This article provides a list of security vulnerabilities that cannot be exploited on Dell EMC SRM but may be flagged by security scanners. This is applicable for SLES OS 12SP5 and SRM 4.8.0.0 onwards ...

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Security Article Type

Security KB

CVE Identifier

The CVE IDs are listed in the table below.

Issue Summary

See the 'Recommendation' section below for details on each CVE.

Recommendations

The vulnerabilities listed in the table are false positives.
 
Third Party Component CVE ID Summary of Vulnerability Reason why Dell EMC SRM is not vulnerable Date Determined False Positive
Port check during rootkit scan NA Scalper worm detected.
Scalper is a worm that propagates from a FreeBSD system using a backdoor port 2001 to another via a security vulnerability in Apache web server, known as chunked encoding vulnerability.
 
  1. We are not on FreeBSD.
  2. We don’t use UDP 2001 port but TCP 2001.
  3. Malware chrootkit script checks for port 2001 and throws this issue. We use TCP 2001 for known reasons and it is not vulnerable.
 Jan -2018
Filesystem scan for rootkit NA Suckit rootkit... Warning: /sbin/init INFECTED This is a valid file on the SLES 12 SP4 OS and not a worm. Aug-2020

Legal Disclaimer

Article Properties
Article Number: 000204030
Article Type: Security KB
Last Modified: 18 Sept 2025
Version:  2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.