DSA-2022-200: Dell Cloud Tiering Appliance Security Update for Multiple Vulnerabilities

Summary: Dell Cloud Tiering Appliance contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

High

Details

Third-party Component CVEs More information
grub2 CVE-2022-28736 https://www.suse.com/security/cve/CVE-2022-28736.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2022-28734 https://www.suse.com/security/cve/CVE-2022-28734.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2022-28733 https://www.suse.com/security/cve/CVE-2022-28733.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-3697 https://www.suse.com/security/cve/CVE-2021-3697.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-3696 https://www.suse.com/security/cve/CVE-2021-3696.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-3695 https://www.suse.com/security/cve/CVE-2021-3695.html This hyperlink is taking you to a website outside of Dell Technologies.
Third-party Component CVEs More information
grub2 CVE-2022-28736 https://www.suse.com/security/cve/CVE-2022-28736.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2022-28734 https://www.suse.com/security/cve/CVE-2022-28734.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2022-28733 https://www.suse.com/security/cve/CVE-2022-28733.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-3697 https://www.suse.com/security/cve/CVE-2021-3697.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-3696 https://www.suse.com/security/cve/CVE-2021-3696.html This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-3695 https://www.suse.com/security/cve/CVE-2021-3695.html This hyperlink is taking you to a website outside of Dell Technologies.
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-28736
CVE-2022-28734
CVE-2022-28733
CVE-2021-3697
CVE-2021-3696
CVE-2021-3695		 Cloud Tiering Appliance All versions of CTA 13.0 and 13.1 13.0.0.2.33 and
13.1.0.2.25		 For CTA and CTA-HA:
https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-appliance/drivers
For CTA-VE and CTA-HA VE:
https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-applianceve/drivers
CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-28736
CVE-2022-28734
CVE-2022-28733
CVE-2021-3697
CVE-2021-3696
CVE-2021-3695		 Cloud Tiering Appliance All versions of CTA 13.0 and 13.1 13.0.0.2.33 and
13.1.0.2.25		 For CTA and CTA-HA:
https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-appliance/drivers
For CTA-VE and CTA-HA VE:
https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-applianceve/drivers

Revision History

RevisionDateDescription
1.02022-07-25Initial Release

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Product Security Information
Article Properties
Article Number: 000201834
Article Type: Dell Security Advisory
Last Modified: 13 Jun 2023
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.