Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

Article Number: 000194630


DSA-2021-308: Dell EMC Metro Node Security Update for Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228 and CVE-2021-45046)

Summary: Dell EMC Metro Node remediation is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...

Article Content


Impact

Critical

Details
Third-Party Component CVEs More information
Apache Log4j CVE-2021-44228 Apache Log4j Remote Code Execution
CVE-2021-45046
Third-Party Component CVEs More information
Apache Log4j CVE-2021-44228 Apache Log4j Remote Code Execution
CVE-2021-45046
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.
Affected Products and Remediation
Product Affected Versions Updated Version Link to Update
Dell EMC Metro Node Versions before 7.0.1 P2 VPLEX-7.0.1.02.00.01 https://www.dell.com/support/home/en-uk/product-support/product/dell-emc-metro-node/drivers

Contact Dell Technologies Technical Support to schedule the code update.
Product Affected Versions Updated Version Link to Update
Dell EMC Metro Node Versions before 7.0.1 P2 VPLEX-7.0.1.02.00.01 https://www.dell.com/support/home/en-uk/product-support/product/dell-emc-metro-node/drivers

Contact Dell Technologies Technical Support to schedule the code update.
Revision History

RevisionDateDescription
1.02021-12-18Initial release
1.12021-12-21Version update
1.22022-09-11Updated "Affected Products and Remediation" section with additional action to "Contact Dell Technologies Technical Support to schedule the code update". 

 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


Article Properties


Affected Product

metro node, metro node, Product Security Information

Last Published Date

09 Nov 2022

Version

5

Article Type

Dell Security Advisory