DSA-2022-018: Dell EMC SRM and Dell EMC Storage Monitoring and Reporting Security Update for Multiple Third-Party Component Vulnerabilities
Summary: Multiple components within Dell EMC SRM and Dell EMC Storage Monitoring and Reporting (SMR) require a security update to address various vulnerabilities.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
Critical
Details
| Third-party Component | CVEs | More information (check for below links for individual scores for each CVE) |
| SuSE Linux Binaries *Only for vApp. |
CVE-2015-3414 | https://www.suse.com/security/cve/CVE-2015-3414.html |
| CVE-2015-3415 | https://www.suse.com/security/cve/CVE-2015-3415.html | |
| CVE-2016-6153 | https://www.suse.com/security/cve/CVE-2016-6153.html | |
| CVE-2017-2518 | https://www.suse.com/security/cve/CVE-2017-2518.html | |
| CVE-2017-7245 | https://www.suse.com/security/cve/CVE-2017-7245.html | |
| CVE-2017-7246 | https://www.suse.com/security/cve/CVE-2017-7246.html | |
| CVE-2017-10989 | https://www.suse.com/security/cve/CVE-2017-10989.html | |
| CVE-2018-1311 | https://www.suse.com/security/cve/CVE-2018-1311.html | |
| CVE-2018-8740 | https://www.suse.com/security/cve/CVE-2018-8740.html | |
| CVE-2018-9517 | https://www.suse.com/security/cve/CVE-2018-9517.html | |
| CVE-2018-14681 | https://www.suse.com/security/cve/CVE-2018-14681.html | |
| CVE-2018-14682 | https://www.suse.com/security/cve/CVE-2018-14682.html | |
| CVE-2018-20346 | https://www.suse.com/security/cve/CVE-2018-20346.html | |
| CVE-2019-3874 | https://www.suse.com/security/cve/CVE-2019-3874.html | |
| CVE-2019-3900 | https://www.suse.com/security/cve/CVE-2019-3900.html | |
| CVE-2019-8457 | https://www.suse.com/security/cve/CVE-2019-8457.html | |
| CVE-2019-16168 | https://www.suse.com/security/cve/CVE-2019-16168.html | |
| CVE-2019-18218 | https://www.suse.com/security/cve/CVE-2019-18218.html | |
| CVE-2019-19244 | https://www.suse.com/security/cve/CVE-2019-19244.html | |
| CVE-2019-19317 | https://www.suse.com/security/cve/CVE-2019-19317.html | |
| CVE-2019-19603 | https://www.suse.com/security/cve/CVE-2019-19603.html | |
| CVE-2019-19645 | https://www.suse.com/security/cve/CVE-2019-19645.html | |
| CVE-2019-19646 | https://www.suse.com/security/cve/CVE-2019-19646.html | |
| CVE-2019-19880 | https://www.suse.com/security/cve/CVE-2019-19880.html | |
| CVE-2019-19923 | https://www.suse.com/security/cve/CVE-2019-19923.html | |
| CVE-2019-19924 | https://www.suse.com/security/cve/CVE-2019-19924.html | |
| CVE-2019-19925 | https://www.suse.com/security/cve/CVE-2019-19925.html | |
| CVE-2019-19926 | https://www.suse.com/security/cve/CVE-2019-19926.html | |
| CVE-2019-19959 | https://www.suse.com/security/cve/CVE-2019-19959.html | |
| CVE-2019-20218 | https://www.suse.com/security/cve/CVE-2019-20218.html | |
| CVE-2020-9327 | https://www.suse.com/security/cve/CVE-2020-9327.html | |
| CVE-2020-12770 | https://www.suse.com/security/cve/CVE-2020-12770.html | |
| CVE-2020-13434 | https://www.suse.com/security/cve/CVE-2020-13434.html | |
| CVE-2020-13435 | https://www.suse.com/security/cve/CVE-2020-13435.html | |
| CVE-2020-13630 | https://www.suse.com/security/cve/CVE-2020-13630.html | |
| CVE-2020-13631 | https://www.suse.com/security/cve/CVE-2020-13631.html | |
| CVE-2020-13632 | https://www.suse.com/security/cve/CVE-2020-13632.html | |
| CVE-2020-14343 | https://www.suse.com/security/cve/CVE-2020-14343.html | |
| CVE-2020-15358 | https://www.suse.com/security/cve/CVE-2020-15358.html | |
| CVE-2021-3444 | https://www.suse.com/security/cve/CVE-2021-3444.html | |
| CVE-2021-3516 | https://www.suse.com/security/cve/CVE-2021-3516.html | |
| CVE-2021-3517 | https://www.suse.com/security/cve/CVE-2021-3517.html | |
| CVE-2021-3518 | https://www.suse.com/security/cve/CVE-2021-3518.html | |
| CVE-2021-3640 | https://www.suse.com/security/cve/CVE-2021-3640.html | |
| CVE-2021-3653 | https://www.suse.com/security/cve/CVE-2021-3653.html | |
| CVE-2021-3656 | https://www.suse.com/security/cve/CVE-2021-3656.html | |
| CVE-2021-3679 | https://www.suse.com/security/cve/CVE-2021-3679.html | |
| CVE-2021-3712 | https://www.suse.com/security/cve/CVE-2021-3712.html | |
| CVE-2021-3732 | https://www.suse.com/security/cve/CVE-2021-3732.html | |
| CVE-2021-3753 | https://www.suse.com/security/cve/CVE-2021-3753.html | |
| CVE-2021-3759 | https://www.suse.com/security/cve/CVE-2021-3759.html | |
| CVE-2021-20294 | https://www.suse.com/security/cve/CVE-2021-20294.html | |
| CVE-2021-33574 | https://www.suse.com/security/cve/CVE-2021-33574.html | |
| CVE-2021-38160 | https://www.suse.com/security/cve/CVE-2021-38160.html | |
| CVE-2021-38185 | https://www.suse.com/security/cve/CVE-2021-38185.html | |
| CVE-2021-38198 | https://www.suse.com/security/cve/CVE-2021-38198.html | |
| CVE-2021-38204 | https://www.suse.com/security/cve/CVE-2021-38204.html | |
| CVE-2021-39537 | https://www.suse.com/security/cve/CVE-2021-39537.html | |
| MYSQL | CVE-2021-3711 | https://nvd.nist.gov/vuln/detail/CVE-2021-3711 |
| CVE-2021-22926 | https://nvd.nist.gov/vuln/detail/CVE-2021-22926 | |
| CVE-2021-35604 | https://nvd.nist.gov/vuln/detail/CVE-2021-35604 | |
| CVE-2021-35624 | https://nvd.nist.gov/vuln/detail/CVE-2021-35624 | |
| Apache Tomcat | CVE-2021-42340 | https://nvd.nist.gov/vuln/detail/CVE-2021-42340 |
| Apache POI | CVE-2014-3529 | https://nvd.nist.gov/vuln/detail/CVE-2014-3529 |
| CVE-2014-3574 | https://nvd.nist.gov/vuln/detail/CVE-2014-3574 | |
| CVE-2014-9527 | https://nvd.nist.gov/vuln/detail/CVE-2014-9527 | |
| CVE-2016-5000 | https://nvd.nist.gov/vuln/detail/CVE-2016-5000 | |
| CVE-2017-5644 | https://nvd.nist.gov/vuln/detail/CVE-2017-5644 | |
| Xstream Jars | CVE-2021-39139 | https://nvd.nist.gov/vuln/detail/CVE-2021-39139 |
| CVE-2021-39140 | https://nvd.nist.gov/vuln/detail/CVE-2021-39140 | |
| CVE-2021-39141 | https://nvd.nist.gov/vuln/detail/CVE-2021-39141 | |
| CVE-2021-39144 | https://nvd.nist.gov/vuln/detail/CVE-2021-39144 | |
| CVE-2021-39145 | https://nvd.nist.gov/vuln/detail/CVE-2021-39145 | |
| CVE-2021-39146 | https://nvd.nist.gov/vuln/detail/CVE-2021-39146 | |
| CVE-2021-39147 | https://nvd.nist.gov/vuln/detail/CVE-2021-39147 | |
| CVE-2021-39148 | https://nvd.nist.gov/vuln/detail/CVE-2021-39148 | |
| CVE-2021-39149 | https://nvd.nist.gov/vuln/detail/CVE-2021-39149 | |
| CVE-2021-39150 | https://nvd.nist.gov/vuln/detail/CVE-2021-39150 | |
| CVE-2021-39151 | https://nvd.nist.gov/vuln/detail/CVE-2021-39151 | |
| CVE-2021-39152 | https://nvd.nist.gov/vuln/detail/CVE-2021-39152 | |
| CVE-2021-39153 | https://nvd.nist.gov/vuln/detail/CVE-2021-39153 | |
| CVE-2021-39154 | https://nvd.nist.gov/vuln/detail/CVE-2021-39154 | |
| Jetty | CVE-2021-34429 | https://nvd.nist.gov/vuln/detail/CVE-2021-34429 |
| Log4j | CVE-2021-44228 | https://nvd.nist.gov/vuln/detail/CVE-2021-44228 |
| CVE-2021-45046 | https://nvd.nist.gov/vuln/detail/CVE-2021-45046 | |
| CVE-2021-45105 | https://nvd.nist.gov/vuln/detail/CVE-2021-45105 | |
| Java | CVE-2021-3517 | https://nvd.nist.gov/vuln/detail/CVE-2021-3517 |
| CVE-2021-3522 | https://nvd.nist.gov/vuln/detail/CVE-2021-3522 | |
| CVE-2021-35550 | https://nvd.nist.gov/vuln/detail/CVE-2021-35550 | |
| CVE-2021-35556 | https://nvd.nist.gov/vuln/detail/CVE-2021-35556 | |
| CVE-2021-35559 | https://nvd.nist.gov/vuln/detail/CVE-2021-35559 | |
| CVE-2021-35560 | https://nvd.nist.gov/vuln/detail/CVE-2021-35560 | |
| CVE-2021-35561 | https://nvd.nist.gov/vuln/detail/CVE-2021-35561 | |
| CVE-2021-35564 | https://nvd.nist.gov/vuln/detail/CVE-2021-35564 | |
| CVE-2021-35565 | https://nvd.nist.gov/vuln/detail/CVE-2021-35565 | |
| CVE-2021-35567 | https://nvd.nist.gov/vuln/detail/CVE-2021-35567 | |
| CVE-2021-35578 | https://nvd.nist.gov/vuln/detail/CVE-2021-35578 | |
| CVE-2021-35586 | https://nvd.nist.gov/vuln/detail/CVE-2021-35586 | |
| CVE-2021-35588 | https://nvd.nist.gov/vuln/detail/CVE-2021-35588 | |
| CVE-2021-35603 | https://nvd.nist.gov/vuln/detail/CVE-2021-35603 | |
| Netty | CVE-2019-20444 | https://nvd.nist.gov/vuln/detail/CVE-2019-20444 |
| CVE-2019-20445 | https://nvd.nist.gov/vuln/detail/CVE-2019-20445 |
| Third-party Component | CVEs | More information (check for below links for individual scores for each CVE) |
| SuSE Linux Binaries *Only for vApp. |
CVE-2015-3414 | https://www.suse.com/security/cve/CVE-2015-3414.html |
| CVE-2015-3415 | https://www.suse.com/security/cve/CVE-2015-3415.html | |
| CVE-2016-6153 | https://www.suse.com/security/cve/CVE-2016-6153.html | |
| CVE-2017-2518 | https://www.suse.com/security/cve/CVE-2017-2518.html | |
| CVE-2017-7245 | https://www.suse.com/security/cve/CVE-2017-7245.html | |
| CVE-2017-7246 | https://www.suse.com/security/cve/CVE-2017-7246.html | |
| CVE-2017-10989 | https://www.suse.com/security/cve/CVE-2017-10989.html | |
| CVE-2018-1311 | https://www.suse.com/security/cve/CVE-2018-1311.html | |
| CVE-2018-8740 | https://www.suse.com/security/cve/CVE-2018-8740.html | |
| CVE-2018-9517 | https://www.suse.com/security/cve/CVE-2018-9517.html | |
| CVE-2018-14681 | https://www.suse.com/security/cve/CVE-2018-14681.html | |
| CVE-2018-14682 | https://www.suse.com/security/cve/CVE-2018-14682.html | |
| CVE-2018-20346 | https://www.suse.com/security/cve/CVE-2018-20346.html | |
| CVE-2019-3874 | https://www.suse.com/security/cve/CVE-2019-3874.html | |
| CVE-2019-3900 | https://www.suse.com/security/cve/CVE-2019-3900.html | |
| CVE-2019-8457 | https://www.suse.com/security/cve/CVE-2019-8457.html | |
| CVE-2019-16168 | https://www.suse.com/security/cve/CVE-2019-16168.html | |
| CVE-2019-18218 | https://www.suse.com/security/cve/CVE-2019-18218.html | |
| CVE-2019-19244 | https://www.suse.com/security/cve/CVE-2019-19244.html | |
| CVE-2019-19317 | https://www.suse.com/security/cve/CVE-2019-19317.html | |
| CVE-2019-19603 | https://www.suse.com/security/cve/CVE-2019-19603.html | |
| CVE-2019-19645 | https://www.suse.com/security/cve/CVE-2019-19645.html | |
| CVE-2019-19646 | https://www.suse.com/security/cve/CVE-2019-19646.html | |
| CVE-2019-19880 | https://www.suse.com/security/cve/CVE-2019-19880.html | |
| CVE-2019-19923 | https://www.suse.com/security/cve/CVE-2019-19923.html | |
| CVE-2019-19924 | https://www.suse.com/security/cve/CVE-2019-19924.html | |
| CVE-2019-19925 | https://www.suse.com/security/cve/CVE-2019-19925.html | |
| CVE-2019-19926 | https://www.suse.com/security/cve/CVE-2019-19926.html | |
| CVE-2019-19959 | https://www.suse.com/security/cve/CVE-2019-19959.html | |
| CVE-2019-20218 | https://www.suse.com/security/cve/CVE-2019-20218.html | |
| CVE-2020-9327 | https://www.suse.com/security/cve/CVE-2020-9327.html | |
| CVE-2020-12770 | https://www.suse.com/security/cve/CVE-2020-12770.html | |
| CVE-2020-13434 | https://www.suse.com/security/cve/CVE-2020-13434.html | |
| CVE-2020-13435 | https://www.suse.com/security/cve/CVE-2020-13435.html | |
| CVE-2020-13630 | https://www.suse.com/security/cve/CVE-2020-13630.html | |
| CVE-2020-13631 | https://www.suse.com/security/cve/CVE-2020-13631.html | |
| CVE-2020-13632 | https://www.suse.com/security/cve/CVE-2020-13632.html | |
| CVE-2020-14343 | https://www.suse.com/security/cve/CVE-2020-14343.html | |
| CVE-2020-15358 | https://www.suse.com/security/cve/CVE-2020-15358.html | |
| CVE-2021-3444 | https://www.suse.com/security/cve/CVE-2021-3444.html | |
| CVE-2021-3516 | https://www.suse.com/security/cve/CVE-2021-3516.html | |
| CVE-2021-3517 | https://www.suse.com/security/cve/CVE-2021-3517.html | |
| CVE-2021-3518 | https://www.suse.com/security/cve/CVE-2021-3518.html | |
| CVE-2021-3640 | https://www.suse.com/security/cve/CVE-2021-3640.html | |
| CVE-2021-3653 | https://www.suse.com/security/cve/CVE-2021-3653.html | |
| CVE-2021-3656 | https://www.suse.com/security/cve/CVE-2021-3656.html | |
| CVE-2021-3679 | https://www.suse.com/security/cve/CVE-2021-3679.html | |
| CVE-2021-3712 | https://www.suse.com/security/cve/CVE-2021-3712.html | |
| CVE-2021-3732 | https://www.suse.com/security/cve/CVE-2021-3732.html | |
| CVE-2021-3753 | https://www.suse.com/security/cve/CVE-2021-3753.html | |
| CVE-2021-3759 | https://www.suse.com/security/cve/CVE-2021-3759.html | |
| CVE-2021-20294 | https://www.suse.com/security/cve/CVE-2021-20294.html | |
| CVE-2021-33574 | https://www.suse.com/security/cve/CVE-2021-33574.html | |
| CVE-2021-38160 | https://www.suse.com/security/cve/CVE-2021-38160.html | |
| CVE-2021-38185 | https://www.suse.com/security/cve/CVE-2021-38185.html | |
| CVE-2021-38198 | https://www.suse.com/security/cve/CVE-2021-38198.html | |
| CVE-2021-38204 | https://www.suse.com/security/cve/CVE-2021-38204.html | |
| CVE-2021-39537 | https://www.suse.com/security/cve/CVE-2021-39537.html | |
| MYSQL | CVE-2021-3711 | https://nvd.nist.gov/vuln/detail/CVE-2021-3711 |
| CVE-2021-22926 | https://nvd.nist.gov/vuln/detail/CVE-2021-22926 | |
| CVE-2021-35604 | https://nvd.nist.gov/vuln/detail/CVE-2021-35604 | |
| CVE-2021-35624 | https://nvd.nist.gov/vuln/detail/CVE-2021-35624 | |
| Apache Tomcat | CVE-2021-42340 | https://nvd.nist.gov/vuln/detail/CVE-2021-42340 |
| Apache POI | CVE-2014-3529 | https://nvd.nist.gov/vuln/detail/CVE-2014-3529 |
| CVE-2014-3574 | https://nvd.nist.gov/vuln/detail/CVE-2014-3574 | |
| CVE-2014-9527 | https://nvd.nist.gov/vuln/detail/CVE-2014-9527 | |
| CVE-2016-5000 | https://nvd.nist.gov/vuln/detail/CVE-2016-5000 | |
| CVE-2017-5644 | https://nvd.nist.gov/vuln/detail/CVE-2017-5644 | |
| Xstream Jars | CVE-2021-39139 | https://nvd.nist.gov/vuln/detail/CVE-2021-39139 |
| CVE-2021-39140 | https://nvd.nist.gov/vuln/detail/CVE-2021-39140 | |
| CVE-2021-39141 | https://nvd.nist.gov/vuln/detail/CVE-2021-39141 | |
| CVE-2021-39144 | https://nvd.nist.gov/vuln/detail/CVE-2021-39144 | |
| CVE-2021-39145 | https://nvd.nist.gov/vuln/detail/CVE-2021-39145 | |
| CVE-2021-39146 | https://nvd.nist.gov/vuln/detail/CVE-2021-39146 | |
| CVE-2021-39147 | https://nvd.nist.gov/vuln/detail/CVE-2021-39147 | |
| CVE-2021-39148 | https://nvd.nist.gov/vuln/detail/CVE-2021-39148 | |
| CVE-2021-39149 | https://nvd.nist.gov/vuln/detail/CVE-2021-39149 | |
| CVE-2021-39150 | https://nvd.nist.gov/vuln/detail/CVE-2021-39150 | |
| CVE-2021-39151 | https://nvd.nist.gov/vuln/detail/CVE-2021-39151 | |
| CVE-2021-39152 | https://nvd.nist.gov/vuln/detail/CVE-2021-39152 | |
| CVE-2021-39153 | https://nvd.nist.gov/vuln/detail/CVE-2021-39153 | |
| CVE-2021-39154 | https://nvd.nist.gov/vuln/detail/CVE-2021-39154 | |
| Jetty | CVE-2021-34429 | https://nvd.nist.gov/vuln/detail/CVE-2021-34429 |
| Log4j | CVE-2021-44228 | https://nvd.nist.gov/vuln/detail/CVE-2021-44228 |
| CVE-2021-45046 | https://nvd.nist.gov/vuln/detail/CVE-2021-45046 | |
| CVE-2021-45105 | https://nvd.nist.gov/vuln/detail/CVE-2021-45105 | |
| Java | CVE-2021-3517 | https://nvd.nist.gov/vuln/detail/CVE-2021-3517 |
| CVE-2021-3522 | https://nvd.nist.gov/vuln/detail/CVE-2021-3522 | |
| CVE-2021-35550 | https://nvd.nist.gov/vuln/detail/CVE-2021-35550 | |
| CVE-2021-35556 | https://nvd.nist.gov/vuln/detail/CVE-2021-35556 | |
| CVE-2021-35559 | https://nvd.nist.gov/vuln/detail/CVE-2021-35559 | |
| CVE-2021-35560 | https://nvd.nist.gov/vuln/detail/CVE-2021-35560 | |
| CVE-2021-35561 | https://nvd.nist.gov/vuln/detail/CVE-2021-35561 | |
| CVE-2021-35564 | https://nvd.nist.gov/vuln/detail/CVE-2021-35564 | |
| CVE-2021-35565 | https://nvd.nist.gov/vuln/detail/CVE-2021-35565 | |
| CVE-2021-35567 | https://nvd.nist.gov/vuln/detail/CVE-2021-35567 | |
| CVE-2021-35578 | https://nvd.nist.gov/vuln/detail/CVE-2021-35578 | |
| CVE-2021-35586 | https://nvd.nist.gov/vuln/detail/CVE-2021-35586 | |
| CVE-2021-35588 | https://nvd.nist.gov/vuln/detail/CVE-2021-35588 | |
| CVE-2021-35603 | https://nvd.nist.gov/vuln/detail/CVE-2021-35603 | |
| Netty | CVE-2019-20444 | https://nvd.nist.gov/vuln/detail/CVE-2019-20444 |
| CVE-2019-20445 | https://nvd.nist.gov/vuln/detail/CVE-2019-20445 |
Affected Products & Remediation
| Product | Affected Versions | Updated Versions | Link to Update | |
| Dell EMC SRM | Versions before 4.7.0.0 |
4.7.0.0 | https://support.emc.com/downloads/34247_SRM |
|
| Dell EMC SMR | Versions before 4.7.0.0 | 4.7.0.0 | https://support.emc.com/downloads/40532_SMR | |
| Product | Affected Versions | Updated Versions | Link to Update | |
| Dell EMC SRM | Versions before 4.7.0.0 |
4.7.0.0 | https://support.emc.com/downloads/34247_SRM |
|
| Dell EMC SMR | Versions before 4.7.0.0 | 4.7.0.0 | https://support.emc.com/downloads/40532_SMR | |
Revision History
| Revision | Date | Description |
| 1.0 | 2022-01-25 | DSA for Dell EMC SRM/SMR |
Related Information
Legal Disclaimer
Affected Products
EMC Storage Monitoring and Reporting, SRM, Product Security Information, SRMProducts
Storage Monitoring and ReportingArticle Properties
Article Number: 000195551
Article Type: Dell Security Advisory
Last Modified: 18 Sept 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.