Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

DSA-2022-198: DELL Policy Manager for Secure Connect Gateway Security Update for Multiple Third-Party Component Vulnerabilities

Summary: DELL Policy Manager for Secure Connect Gateway security update for multiple third-party component vulnerabilities that may be exploited by malicious users to compromise the affected system. ...

This article applies to   This article does not apply to 

Impact

Critical

Details

Third-party Component CVEs More information
Python 3.6 CVE-2020-29651 CVE-2020-29651 | SUSE This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2020-36242 CVE-2020-36242 | SUSE This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-33503 CVE-2021-33503 | SUSE This hyperlink is taking you to a website outside of Dell Technologies.
org.thymeleaf.thymeleaf CVE-2021-43466 See NVD (http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
org.springframework CVE-2022-22950
CVE-2022-22965
CVE-2022-22968
CVE-2022-22970
CVE-2022-22978
SUSE Enterprise 12 SP5 CVE-2021-3800
CVE-2022-0778
CVE-2022-23648
CVE-2022-24407
CVE-2022-25235
CVE-2022-25236
CVE-2022-25313
CVE-2022-25314
CVE-2022-25315
Java CVE-2022-21426
CVE-2022-21434
CVE-2022-21443
CVE-2022-21449
CVE-2022-21476
CVE-2022-21496
Third-party Component CVEs More information
Python 3.6 CVE-2020-29651 CVE-2020-29651 | SUSE This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2020-36242 CVE-2020-36242 | SUSE This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-33503 CVE-2021-33503 | SUSE This hyperlink is taking you to a website outside of Dell Technologies.
org.thymeleaf.thymeleaf CVE-2021-43466 See NVD (http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
org.springframework CVE-2022-22950
CVE-2022-22965
CVE-2022-22968
CVE-2022-22970
CVE-2022-22978
SUSE Enterprise 12 SP5 CVE-2021-3800
CVE-2022-0778
CVE-2022-23648
CVE-2022-24407
CVE-2022-25235
CVE-2022-25236
CVE-2022-25313
CVE-2022-25314
CVE-2022-25315
Java CVE-2022-21426
CVE-2022-21434
CVE-2022-21443
CVE-2022-21449
CVE-2022-21476
CVE-2022-21496
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Affected Version Updated Version Link to Update
Dell Policy Manager for Secure Connect Gateway 5.10.00.00 5.12.00.00
https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway-ve/drivers
Product Affected Version Updated Version Link to Update
Dell Policy Manager for Secure Connect Gateway 5.10.00.00 5.12.00.00
https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway-ve/drivers

Revision History

RevisionDateDescription
1.02022-07-26Initial Release

Related Information

Affected Products

Secure Connect Gateway

Products

Product Security Information
Article Properties
Article Number: 000201859
Article Type: Dell Security Advisory
Last Modified: 12 Jun 2023
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.