DSA-2019-080: Dell SupportAssist Enterprise Security Update for Eclipse Jetty Server Vulnerability

Summary: Dell SupportAssist Enterprise has been updated to address a security vulnerability in the Eclipse Jetty Server component.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Critical

Details

The Eclipse Jetty Server component in Dell SupportAssist Enterprise has been updated for the following vulnerability:

  • CVE-2017-7658

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

The Eclipse Jetty Server component in Dell SupportAssist Enterprise has been updated for the following vulnerability:

  • CVE-2017-7658

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Affected Products:
Dell SupportAssist Enterprise version 2.0.20 and prior versions

Remediation:

The following Dell SupportAssist Enterprise release contains a resolution to this vulnerability:

  • Dell SupportAssist Enterprise version 2.0.21

Dell Technologies recommends all customers update at the earliest opportunity.

Method 1: Auto Update

Dell SupportAssist Enterprise automatically upgrades to the latest version available, if automatic updates are enabled.

Method 2: Manual Update

To update manually, download and install the latest product version for:

SupportAssist Enterprise Windows management server 

SupportAssist Enterprise Linux management server

Go to Dell Drivers & Downloads for updates on the applicable products.

Customers may use one of the Dell Notification Solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

 

Affected Products:
Dell SupportAssist Enterprise version 2.0.20 and prior versions

Remediation:

The following Dell SupportAssist Enterprise release contains a resolution to this vulnerability:

  • Dell SupportAssist Enterprise version 2.0.21

Dell Technologies recommends all customers update at the earliest opportunity.

Method 1: Auto Update

Dell SupportAssist Enterprise automatically upgrades to the latest version available, if automatic updates are enabled.

Method 2: Manual Update

To update manually, download and install the latest product version for:

SupportAssist Enterprise Windows management server 

SupportAssist Enterprise Linux management server

Go to Dell Drivers & Downloads for updates on the applicable products.

Customers may use one of the Dell Notification Solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

SupportAssist Enterprise 1.x, SupportAssist Enterprise Application 2.x
Article Properties
Article Number: 000177817
Article Type: Dell Security Advisory
Last Modified: 22 Jul 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.