DSA-2021-300: vRealize Orchestrator (vRO) Plug-ins for Dell EMC Storage Security Updates for Apache Log4j Remote Code Execution Vulnerability
Summary: vRealize Orchestrator (vRO) Plug-ins for Dell EMC Storage is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
Critical
Details
|
Third-party Component |
CVE |
More information |
|
Apache Log4j |
CVE-2021-44228, CVE-2021-45046 |
|
Third-party Component |
CVE |
More information |
|
Apache Log4j |
CVE-2021-44228, CVE-2021-45046 |
Affected Products & Remediation
| Product | Affected Versions | Updated Versions | Link to Update |
| vRO Plugin for Dell EMC PowerMax | Version 1.2.3 or earlier | 1.2.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.1.0 or earlier | 1.1.1 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.0.3, 1.0.2, 1.0.1, and 1.0.0 | 1.0.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
Note:
Customers using vRO Plugin for Dell EMC PowerStore 1.1.4 (or earlier), Unity 1.0.7 (or earlier and XtremIO 4.1.2 (or earlier) only need to apply the vRO mitigation, detailed in the Workaround and Mitigation section.
| Product | Affected Versions | Updated Versions | Link to Update |
| vRO Plugin for Dell EMC PowerMax | Version 1.2.3 or earlier | 1.2.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.1.0 or earlier | 1.1.1 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.0.3, 1.0.2, 1.0.1, and 1.0.0 | 1.0.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
Note:
Customers using vRO Plugin for Dell EMC PowerStore 1.1.4 (or earlier), Unity 1.0.7 (or earlier and XtremIO 4.1.2 (or earlier) only need to apply the vRO mitigation, detailed in the Workaround and Mitigation section.
Workarounds & Mitigations
Mitigation applicable to vRO Plugin for Dell EMC PowerMax, vRO Plugin for Dell EMC PowerScale, vRO Plugin for Dell EMC PowerStore, vRO Plugin for Dell EMC Unity, and vRO Plugin for Dell EMC XtremIO:
VMware has announced two KB articles to mitigate this vulnerability for VMware vRealize Orchestrator (vRO):
Revision History
|
Related Information
Legal Disclaimer
Affected Products
Product Security Information, vRealize Orchestrator (vRO) Plug-in for PowerMax, vRealize Orchestrator (vRO) Plug-in for PowerScaleProducts
vRealize Orchestrator (vRO) Plug-in for PowerStore, vRealize Orchestrator (vRO) Plug-in for Unity, vRealize Orchestrator (vRO) Plug-in for XtremIOArticle Properties
Article Number: 000194610
Article Type: Dell Security Advisory
Last Modified: 05 Nov 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.