DSA-2023-330: Security Update for Multiple Third-Party Component Vulnerabilities within Dell Hybrid Client

Summary: Dell Hybrid Client remediation is available for multiple third-party security vulnerabilities that could be exploited by malicious users to compromise the affected system.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Critical

Details

Third-party Component CVEs More Information
OpenSSL CVE-2023-0464, CVE-2023-0466, CVE-2023-0465 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
SSSD CVE-2022-4254
Samba CVE-2022-45141
Sequelize CVE-2023-25813, CVE-2023-22580, CVE-2023-22578, CVE-2023-22579
Sqlite3 CVE-2022-43441

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Software/Firmware Affected Versions Remediated Versions Link
Precision 3260 Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 Precision 3260(Ubuntu 20.04)
Precision 3260(Ubuntu 22.04)
Latitude 3330 Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 Latitude 3330(Ubuntu 20.04)
Latitude 3330(Ubuntu 22.04)
OptiPlex 5400 All-in-One Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 OptiPlex 5400 All-in-One(Ubuntu 20.04)
OptiPlex 5400 All-in-One(Ubuntu 22.04)
OptiPlex 3000 Thin Client Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 OptiPlex 3000 Thin Client(Ubuntu 20.04)
OptiPlex 3000 Thin Client(Ubuntu 22.04)
Product Software/Firmware Affected Versions Remediated Versions Link
Precision 3260 Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 Precision 3260(Ubuntu 20.04)
Precision 3260(Ubuntu 22.04)
Latitude 3330 Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 Latitude 3330(Ubuntu 20.04)
Latitude 3330(Ubuntu 22.04)
OptiPlex 5400 All-in-One Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 OptiPlex 5400 All-in-One(Ubuntu 20.04)
OptiPlex 5400 All-in-One(Ubuntu 22.04)
OptiPlex 3000 Thin Client Dell Hybrid Client Version 2.5 and prior
 		 Version 2.5.00.01 OptiPlex 3000 Thin Client(Ubuntu 20.04)
OptiPlex 3000 Thin Client(Ubuntu 22.04)

Revision History

RevisionDateDescription
1.02023-09-27Initial Release

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Latitude 3330, OptiPlex 3000 Thin Client, OptiPlex 5400 All-In-One, Precision 3260 Compact
Article Properties
Article Number: 000217322
Article Type: Dell Security Advisory
Last Modified: 17 Feb 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.