Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products

DSA-2021-282: Dell EMC Secure Connect Gateway and SupportAssist Enterprise 4.x Security Update for Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228 and CVE-2021-45046)

Summary: Dell EMC Secure Connect Gateway remediation is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...

This article applies to   This article does not apply to 

Impact

Critical

Details

Third-party Component CVEs More information
Apache Log4j CVE-2021-44228 Apache Log4j Remote Code Execution
CVE-2021-45046
Third-party Component CVEs More information
Apache Log4j CVE-2021-44228 Apache Log4j Remote Code Execution
CVE-2021-45046
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Affected Versions Updated Versions Link to Update
Secure Connect Gateway - Virtual Edition

 
5.00.05 and earlier versions (OVF and VHD) 5.00.07 (OVF and VHD)

 
https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
Secure Connect Gateway - Application Edition 5.00.05 and earlier versions (Windows and Linux) 5.00.06 (Windows and Linux) https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
SupportAssist Enterprise

 
4.0.06 and earlier versions (OVF and VHD) Upgrade to Secure Connect Gateway 5.00.07 (OVF and VHD)

 
https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview


Note: The above table may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
Product Affected Versions Updated Versions Link to Update
Secure Connect Gateway - Virtual Edition

 
5.00.05 and earlier versions (OVF and VHD) 5.00.07 (OVF and VHD)

 
https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
Secure Connect Gateway - Application Edition 5.00.05 and earlier versions (Windows and Linux) 5.00.06 (Windows and Linux) https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
SupportAssist Enterprise

 
4.0.06 and earlier versions (OVF and VHD) Upgrade to Secure Connect Gateway 5.00.07 (OVF and VHD)

 
https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview


Note: The above table may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Revision History

RevisionDateDescription
1.02021-12-17Initial Release
1.12022-01-20Updated the Affected Versions field

Related Information

Affected Products

Secure Connect Gateway, Product Security Information, Secure Connect Gateway, Secure Connect Gateway - Application Edition, Secure Connect Gateway - Virtual Edition

Products

SupportAssist Enterprise, SupportAssist Enterprise Virtual Appliance, SupportAssist for Home PCs, SupportAssist for Business PCs, SupportAssist Enterprise 1.x, SupportAssist Enterprise Application 2.x, SupportAssist Enterprise Virtual Appliance 4.x
Article Properties
Article Number: 000194624
Article Type: Dell Security Advisory
Last Modified: 24 Jan 2022
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.