Dell EMC OpenManage Plug-in for Nagios Core False Positive Security Vulnerability
Summary: This article provides a list of security vulnerabilities that cannot be exploited on Dell EMC OpenManage Plug-in for Nagios Core version 3.1 and earlier, but which may be identified by security scanners. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Security Article Type
Security KB
CVE Identifier
The CVE IDs are listed in the table below.
Issue Summary
See the 'Recommendation' section below for details on each CVE.
Recommendations
The vulnerabilities that are listed in the below table are in order by the date on which Dell EMC OpenManage Plug-in for Nagios Core Engineering determined that the Dell EMC OpenManage Plug-in for Nagios Core version 3.1 and earlier are not vulnerable.
| Third-party Component | CVE IDs | Summary of Vulnerability | Reason why Product is not Vulnerable | Date Determined False Positive |
| Apache Log4j 1.2.17-cloudera1 | CVE-2021-4104 | Requires use of JMSAppender, a nonstandard configuration | Does not use JMSAppender configuration | December 20, 2021 |
| Apache Log4j 1.2.17-cloudera1 | CVE-2019-17571 | Requires use of SocketServer, a nonstandard configuration | Does not use SocketServer configuration | December 20, 2021 |
| Apache Log4j 1.2.17-cloudera1 | CVE-2022-23302 | Requires use of JMSAppender, a nonstandard configuration | Does not use JMSAppender configuration | March 11, 2022 |
| Apache Log4j 1.2.17-cloudera1 | CVE-2022-23305 | Requires use of JDBCAppender, a nonstandard configuration | Does not use JDBCAppender configuration | March 11, 2022 |
| Apache Log4j 1.2.17-cloudera1 | CVE-2022-23307 | Requires use of Chainsaw, a nonstandard configuration | Does not use Chainsaw configuration | March 11, 2022 |
Legal Disclaimer
Affected Products
Dell OpenManage Plug-in for Nagios Core, Dell OpenManage Plug-in for Nagios Core version 2.0, Dell OpenManage Plug-in for Nagios Core version 1.0, Dell EMC OpenManage Plug-in for Nagios Core - Current Version
, Dell OpenManage Plug-in for Nagios Core version 2.1, Dell EMC OpenManage Plug-in v3.0 for Nagios Core, Product Security Information
...
Article Properties
Article Number: 000195050
Article Type: Security KB
Last Modified: 01 Apr 2022
Version: 2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.