Article Number: 000216475

DSA-2023-273: Security Update for Dell PowerProtect Cyber Recovery

Summary: Dell PowerProtect Cyber Recovery remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Critical

Details

Third-Party Component	CVEs	More Information
c-ares	CVE-2023-32067, CVE-2023-31147, CVE-2023-31130	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
go	CVE-2023-29405,CVE-2023-29404,CVE-2022-41725,CVE-2023-29400,CVE-2023-29402,CVE-2023-24539,CVE-2022-41717,CVE-2023-24537,CVE-2023-24532,CVE-2022-41716,CVE-2023-29403,CVE-2023-24536,CVE-2022-41724,CVE-2023-24534,CVE-2022-41723,CVE-2023-24540,CVE-2023-24538,CVE-2022-28327,CVE-2022-30580,CVE-2022-32148,CVE-2022-1962,CVE-2022-30633,CVE-2022-2879,CVE-2022-30631,CVE-2022-2880,CVE-2022-30632,CVE-2022-27664,CVE-2022-41715,CVE-2022-28131,CVE-2022-1705,CVE-2022-32189,CVE-2022-24675,CVE-2022-30635,CVE-2022-30630,CVE-2021-29923	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
libcap2	CVE-2023-2603	See NVD link below for CVE details https://nvd.nist.gov/vuln/detail/CVE-2023-2603
libcurl,curl	CVE-2023-28321, CVE-2023-28320, CVE-2023-28319	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
libldap-2_4-2	CVE-2023-2953	See NVD link below for CVE details https://nvd.nist.gov/vuln/detail/CVE-2023-2953
libssh-4	CVE-2023-2283, CVE-2023-1667	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
libssl1.1,libcrypto1.1	CVE-2023-0466	See NVD link below for CVE details https://nvd.nist.gov/vuln/detail/CVE-2023-0466
libssl3,openssl	CVE-2023-2650	See NVD link below for CVE details https://nvd.nist.gov/vuln/detail/CVE-2023-2650
libtinfo6,ncurses-bin,libncurses6,ncurses-base,libncursesw6	CVE-2023-29491	See NVD link below for CVE details https://nvd.nist.gov/vuln/detail/CVE-2023-29491
perl-base	CVE-2023-31484	See NVD link below for CVE details https://nvd.nist.gov/vuln/detail/CVE-2023-31484

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

CVEs Addressed	Product	Affected Versions	Remediated Versions	Link
All listed CVEs	PowerProtect Cyber Recovery	19.14.0.1 and Prior	19.14.0.2 and Later	https://www.dell.com/support/home/product-support/product/cyber-recovery/drivers

CVEs Addressed	Product	Affected Versions	Remediated Versions	Link
All listed CVEs	PowerProtect Cyber Recovery	19.14.0.1 and Prior	19.14.0.2 and Later	https://www.dell.com/support/home/product-support/product/cyber-recovery/drivers

Revision History

Revision	Date	Description
1.0	2023-08-04	Initial Release

DSA-2023-273: Security Update for Dell PowerProtect Cyber Recovery

Summary: Dell PowerProtect Cyber Recovery remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type

Welcome

Welcome to Dell

DSA-2023-273: Security Update for Dell PowerProtect Cyber Recovery

Summary: Dell PowerProtect Cyber Recovery remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type