Dell EMC OpenManage Integration with Microsoft System Center for System Center Operations Manager False Positive Security Vulnerability
Summary: This article provides a list of security vulnerabilities that cannot be exploited on Dell EMC OpenManage Integration with Microsoft System Center (OMIMSSC) for System Center Operations Manager (SCOM) v7.3, but which may be identified by security scanners. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Security Article Type
Security KB
CVE Identifier
The CVE IDs are listed in the table below.
Issue Summary
See the 'Recommendation' section below for details on each CVE.
Recommendations
The vulnerabilities that are listed in the table below are in order by the date on which Engineering determined that the Dell EMC OpenManage Integration with Microsoft System Center (OMIMSSC) for System Center Operations Manager (SCOM) v7.3 are not vulnerable.
| Third-party Component | CVE IDs | Summary of Vulnerability | Reason why Product is not Vulnerable | Date Determined False Positive |
| Log4j 1.2.17-cloudera1 | CVE-2021-4104 | Requires use of JMSAppender, a nonstandard configuration | Does not use JMSAppender configuration | December 20, 2021 |
| Log4j 1.2.17-cloudera1 | CVE-2019-17571 | Requires use of SocketServer, a nonstandard configuration | Does not use SocketServer configuration | December 20, 2021 |
| Log4j 1.2.17-cloudera1 | CVE-2022-23302 | Requires use of JMSAppender. | Does not use JMSAppender configuration | February 3, 2022 |
| Log4j 1.2.17-cloudera1 | CVE-2022-23305 | Requires use of JDBCAppender | Does not use JDBCAppender configuration | February 3, 2022 |
| Log4j 1.2.17-cloudera1 | CVE-2022-23307 | Requires use of Chainsaw to process serialized messages. | Does not use Chainsaw | February 3, 2022 |
Legal Disclaimer
Affected Products
OpenManage Integration for Microsoft System Center Operations Manager (SCOM), OpenManage Integration for Microsoft System Center Operations Manager (SCOM) Version 7.3, Product Security InformationArticle Properties
Article Number: 000195036
Article Type: Security KB
Last Modified: 03 Feb 2022
Version: 2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.