DSA-2024-153: Security Update for Data Protection Advisor for Multiple Vulnerabilities.

Table of Contents

Detailed Article

Impact

Affected Products & Remediation

Revision History

Related Info

Legal Disclaimer

Affected Products

Provide Feedback

Summary: Data Protection Advisor remediation is available for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.

Check out other resources

Impact

Critical

Details

Third-party Component	CVEs	More Information
Apache Log4j	CVE-2021-45105, CVE-2021-45046, CVE-2021-44832	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
SSL Medium Strength Cipher Suites Supported	CVE-2016-2183	NVD - CVE-2016-2183 (nist.gov)
Oracle Java SE	CVE-2024-20952, CVE-2024-20945, CVE-2024-20932, CVE-2024-20926, CVE-2024-20925, CVE-2024-20923, CVE-2024-20922, CVE-2024-20921, CVE-2024-20919, CVE-2024-20918, CVE-2023-44487, CVE-2023-5072, CVE-2024-20955	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
iText	CVE-2017-9096, CVE-2021-43113	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

CVEs Addressed	Product	Affected Versions	Remediated Versions	Link
CVE-2021-45105, CVE-2021-45046, CVE-2021-44832, CVE-2016-2183, CVE-2017-9096, CVE-2021-43113	Dell Protection Advisor	Version 19.10	Data Protection Advisor 19.10 patch build 22	https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers
CVE-2024-20952, CVE-2024-20945, CVE-2024-20932, CVE-2024-20926, CVE-2024-20925, CVE-2024-20923, CVE-2024-20922, CVE-2024-20921, CVE-2024-20919, CVE-2024-20918, CVE-2023-44487, CVE-2023-5072, CVE-2024-20955	Dell Protection Advisor	Versions 19.5, 19.6, 19.8, 19.7, 19.9 and 19.10	Data Protection Advisor January 2024 JRE 8u401 Upgrade Patch 19.10	https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers
CVE-2021- 45105, CVE- 2021-45046, CVE-2021- 44832, CVE- 2016-2183, CVE-2017- 9096, CVE- 2021-4311	Integrated Data Protection Appliance (PowerProtect DP Series)	Version 2.7.6	Version 2.7.6 with DPA 19.10 patch build 22	Link to PowerProtect DP Series Software 2.7.6 https://www.dell.com/support/home/product-support/product/integrated-data-protection-appliance/drivers Link to DPA 19.10 patch build 22 https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers DPA out of band upgrade KB https://www.dell.com/support/kbdoc/en-ie/000205649/powerprotect-dp-series-appliance-and-idpa-steps-to-upgrade-dpa-or-data-protection-advisor-component-out-of-band-within-the-appliance
CVE-2024- 20952, CVE- 2024-20945, CVE-2024- 20932, CVE- 2024-20926, CVE-2024- 20925, CVE- 2024-20923, CVE-2024- 20922, CVE- 2024-20921, CVE-2024- 20919, CVE- 2024-20918, CVE-2023- 44487, CVE- 2023-5072, CVE-2024- 20955	Integrated Data Protection Appliance (PowerProtect DP Series)	Versions 2.7 through 2.7.6	Version 2.7.6 with DPA 19.10 patch build 22	Link to PowerProtect DP Series Software 2.7.6 https://www.dell.com/support/home/product-support/product/integrated-data-protection-appliance/drivers Link to DPA 19.10 patch build 22 https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers DPA out of band upgrade KB https://www.dell.com/support/kbdoc/en-ie/000205649/powerprotect-dp-series-appliance-and-idpa-steps-to-upgrade-dpa-or-data-protection-advisor-component-out-of-band-within-the-appliance

CVEs Addressed	Product	Affected Versions	Remediated Versions	Link
CVE-2021-45105, CVE-2021-45046, CVE-2021-44832, CVE-2016-2183, CVE-2017-9096, CVE-2021-43113	Dell Protection Advisor	Version 19.10	Data Protection Advisor 19.10 patch build 22	https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers
CVE-2024-20952, CVE-2024-20945, CVE-2024-20932, CVE-2024-20926, CVE-2024-20925, CVE-2024-20923, CVE-2024-20922, CVE-2024-20921, CVE-2024-20919, CVE-2024-20918, CVE-2023-44487, CVE-2023-5072, CVE-2024-20955	Dell Protection Advisor	Versions 19.5, 19.6, 19.8, 19.7, 19.9 and 19.10	Data Protection Advisor January 2024 JRE 8u401 Upgrade Patch 19.10	https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers
CVE-2021- 45105, CVE- 2021-45046, CVE-2021- 44832, CVE- 2016-2183, CVE-2017- 9096, CVE- 2021-4311	Integrated Data Protection Appliance (PowerProtect DP Series)	Version 2.7.6	Version 2.7.6 with DPA 19.10 patch build 22	Link to PowerProtect DP Series Software 2.7.6 https://www.dell.com/support/home/product-support/product/integrated-data-protection-appliance/drivers Link to DPA 19.10 patch build 22 https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers DPA out of band upgrade KB https://www.dell.com/support/kbdoc/en-ie/000205649/powerprotect-dp-series-appliance-and-idpa-steps-to-upgrade-dpa-or-data-protection-advisor-component-out-of-band-within-the-appliance
CVE-2024- 20952, CVE- 2024-20945, CVE-2024- 20932, CVE- 2024-20926, CVE-2024- 20925, CVE- 2024-20923, CVE-2024- 20922, CVE- 2024-20921, CVE-2024- 20919, CVE- 2024-20918, CVE-2023- 44487, CVE- 2023-5072, CVE-2024- 20955	Integrated Data Protection Appliance (PowerProtect DP Series)	Versions 2.7 through 2.7.6	Version 2.7.6 with DPA 19.10 patch build 22	Link to PowerProtect DP Series Software 2.7.6 https://www.dell.com/support/home/product-support/product/integrated-data-protection-appliance/drivers Link to DPA 19.10 patch build 22 https://www.dell.com/support/home/product-support/product/data-protection-advisor/drivers DPA out of band upgrade KB https://www.dell.com/support/kbdoc/en-ie/000205649/powerprotect-dp-series-appliance-and-idpa-steps-to-upgrade-dpa-or-data-protection-advisor-component-out-of-band-within-the-appliance

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Dell recommends that you always upgrade to the latest release/version for your product
To schedule platform security patch installation, or to upgrade your server, contact Dell Customer Support at https://www.dell.com/support/home/en-us/.

Revision History

Revision	Date	Description
1.0	2024-04-01	Initial Release
2.0	2024-04-02	Updated for enhanced format presentation with no change to content

Related Information

Legal Disclaimer

Affected Products

Data Protection Advisor, PowerProtect Data Protection Software, Integrated Data Protection Appliance Family, Integrated Data Protection Appliance Software, Product Security Information

Article Number: 000223673

Article Type: Dell Security Advisory

Last Modified: 09 Sept 2025

Check if your device is covered by Support Services.

DSA-2024-153: Security Update for Data Protection Advisor for Multiple Vulnerabilities.

Summary: Data Protection Advisor remediation is available for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system.

Impact

Details

Affected Products & Remediation

Revision History

Related Information

Legal Disclaimer

Affected Products

Article Properties

Find answers to your questions from other Dell users

Support Services

Article Properties

Find answers to your questions from other Dell users

Support Services