Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

Article Number: 000198300


DSA-2022-075: Dell EMC Data Protection Search and Dell EMC Integrated Data Protection Appliance (IDPA) Security Update for Multiple Vulnerabilities

Summary: Dell EMC Data Protection Search and Dell EMC Integrated Data Protection Appliance (IDPA) remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

Article Content


Impact

High

Details

Third-party Component  CVE(s) More information
Oracle JRE CVE-2021-3517
CVE-2021-35560  
CVE-2021-35567
CVE-2021-35550
CVE-2021-3522     
CVE-2021-35586  
CVE-2021-35564  
CVE-2021-35556
CVE-2021-35559  
CVE-2021-35561
CVE-2021-35565
CVE-2021-35578
CVE-2021-35603
CVE-2021-35588

https://www.oracle.com/security-alerts/cpujul2021.html#AppendixJAVA
Ruby CVE-2015-9096   
CVE-2016-7798   
CVE-2017-0898   
CVE-2017-0899   
CVE-2017-0900   
CVE-2017-0901   
CVE-2017-0902   
CVE-2017-0903   
CVE-2017-9228   
CVE-2017-9229   
CVE-2017-10784   
CVE-2017-14033  
CVE-2017-14064  
CVE-2017-17405  
CVE-2017-17742  
CVE-2017-17790  
CVE-2018-6914   
CVE-2018-8777   
CVE-2018-8778   
CVE-2018-8779   
CVE-2018-8780   
CVE-2018-16395  
CVE-2018-16396  
CVE-2018-1000073
CVE-2018-1000074
CVE-2018-1000075
CVE-2018-1000076
CVE-2018-1000077
CVE-2018-1000078
CVE-2018-1000079
CVE-2019-8320   
CVE-2019-8321   
CVE-2019-8322   
CVE-2019-8323   
CVE-2019-8324   
CVE-2019-8325   
CVE-2019-15845  
CVE-2019-16201  
CVE-2019-16254  
CVE-2019-16255  
CVE-2020-10663
https://www.tenable.com/plugins/nessus/137599
Sqlite CVE-2015-3414
CVE-2015-3415
CVE-2016-6153
CVE-2017-10989
CVE-2017-2518
CVE-2018-20346
CVE-2018-8740
CVE-2019-16168
CVE-2019-19244
CVE-2019-19317
CVE-2019-19603
CVE-2019-19645
CVE-2019-19646
CVE-2019-19880
CVE-2019-19923
CVE-2019-19924
CVE-2019-19925
CVE-2019-19926
CVE-2019-19959
CVE-2019-20218
CVE-2019-8457
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-13631
CVE-2020-13632
CVE-2020-15358
CVE-2020-9327
https://www.suse.com/support/update/announcement/2021/suse-su-20213215-1/
Third-party Component  CVE(s) More information
Oracle JRE CVE-2021-3517
CVE-2021-35560  
CVE-2021-35567
CVE-2021-35550
CVE-2021-3522     
CVE-2021-35586  
CVE-2021-35564  
CVE-2021-35556
CVE-2021-35559  
CVE-2021-35561
CVE-2021-35565
CVE-2021-35578
CVE-2021-35603
CVE-2021-35588

https://www.oracle.com/security-alerts/cpujul2021.html#AppendixJAVA
Ruby CVE-2015-9096   
CVE-2016-7798   
CVE-2017-0898   
CVE-2017-0899   
CVE-2017-0900   
CVE-2017-0901   
CVE-2017-0902   
CVE-2017-0903   
CVE-2017-9228   
CVE-2017-9229   
CVE-2017-10784   
CVE-2017-14033  
CVE-2017-14064  
CVE-2017-17405  
CVE-2017-17742  
CVE-2017-17790  
CVE-2018-6914   
CVE-2018-8777   
CVE-2018-8778   
CVE-2018-8779   
CVE-2018-8780   
CVE-2018-16395  
CVE-2018-16396  
CVE-2018-1000073
CVE-2018-1000074
CVE-2018-1000075
CVE-2018-1000076
CVE-2018-1000077
CVE-2018-1000078
CVE-2018-1000079
CVE-2019-8320   
CVE-2019-8321   
CVE-2019-8322   
CVE-2019-8323   
CVE-2019-8324   
CVE-2019-8325   
CVE-2019-15845  
CVE-2019-16201  
CVE-2019-16254  
CVE-2019-16255  
CVE-2020-10663
https://www.tenable.com/plugins/nessus/137599
Sqlite CVE-2015-3414
CVE-2015-3415
CVE-2016-6153
CVE-2017-10989
CVE-2017-2518
CVE-2018-20346
CVE-2018-8740
CVE-2019-16168
CVE-2019-19244
CVE-2019-19317
CVE-2019-19603
CVE-2019-19645
CVE-2019-19646
CVE-2019-19880
CVE-2019-19923
CVE-2019-19924
CVE-2019-19925
CVE-2019-19926
CVE-2019-19959
CVE-2019-20218
CVE-2019-8457
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-13631
CVE-2020-13632
CVE-2020-15358
CVE-2020-9327
https://www.suse.com/support/update/announcement/2021/suse-su-20213215-1/
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Product Affected Version(s) Updated Version(s) Link to Update
Dell EMC Data Protection Search 19.5 and earlier
19.6.0


https://dl.dell.com/downloads/DL107465_Search-19.6.0-upgrade-package.zip
Dell EMC Integrated Data Protection Appliance 2.7 and earlier. 2.7.1

Note: The table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
Product Affected Version(s) Updated Version(s) Link to Update
Dell EMC Data Protection Search 19.5 and earlier
19.6.0


https://dl.dell.com/downloads/DL107465_Search-19.6.0-upgrade-package.zip
Dell EMC Integrated Data Protection Appliance 2.7 and earlier. 2.7.1

Note: The table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Workarounds and Mitigations

None.

Revision History

RevisionDateDescription
1.02022-04-11Initial Release

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


Article Properties


Affected Product

Data Protection Search, Data Protection Search, PowerProtect Data Protection Software, Integrated Data Protection Appliance Family, PowerProtect Data Protection Hardware, Integrated Data Protection Appliance Software, Product Security Information

Last Published Date

11 Apr 2022

Version

1

Article Type

Dell Security Advisory