DSA-2024-017: Dell Storage Resource Manager (SRM) and Dell Storage Monitoring and Reporting (SMR) Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell Storage Resource Manager (SRM) and Dell Storage Monitoring and Reporting (SMR) remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Critical

Details

Third-party Component CVEs More Information
SUSE Linux Enterprise Server 12 SP5 CVE-2018-1311, CVE-2019-14889, CVE-2020-1730, CVE-2020-16135, CVE-2020-26555, CVE-2021-3634, CVE-2021-26345, CVE-2021-33631, CVE-2021-46766, CVE-2021-46774, CVE-2022-1210, CVE-2022-1622, CVE-2022-2586, CVE-2022-3107, CVE-2022-3108, CVE-2022-3564, CVE-2022-4662, CVE-2022-23820, CVE-2022-23830, CVE-2022-40090, CVE-2023-0394, CVE-2023-0461, CVE-2023-0950, CVE-2023-1667, CVE-2023-1916, CVE-2023-2137, CVE-2023-2255, CVE-2023-2283, CVE-2023-2704, CVE-2023-2731, CVE-2023-3776, CVE-2023-4039, CVE-2023-4255, CVE-2023-4750, CVE-2023-5344, CVE-2023-5441, CVE-2023-5535, CVE-2023-5678, CVE-2023-5717, CVE-2023-6004, CVE-2023-6040, CVE-2023-6121, CVE-2023-6356, CVE-2023-6535, CVE-2023-6536, CVE-2023-6597, CVE-2023-6606, CVE-2023-6610, CVE-2023-6918, CVE-2023-6931, CVE-2023-6932, CVE-2023-7207, CVE-2023-20521, CVE-2023-20526, CVE-2023-20533, CVE-2023-20566, CVE-2023-20519, CVE-2023-20592, CVE-2023-23454, CVE-2023-26965, CVE-2023-27043, CVE-2023-31083, CVE-2023-37536, CVE-2023-38473, CVE-2023-39197, CVE-2023-39198, CVE-2023-39804, CVE-2023-40217, CVE-2023-45322, CVE-2023-45803, CVE-2023-45863, CVE-2023-45871, CVE-2023-46246, CVE-2023-46838, CVE-2023-47233, CVE-2023-48231, CVE-2023-48232, CVE-2023-48233, CVE-2023-48234, CVE-2023-48235, CVE-2023-48236, CVE-2023-48237, CVE-2023-48706, CVE-2023-48795, CVE-2023-50495, CVE-2023-51042, CVE-2023-51043, CVE-2023-51385, CVE-2023-51779, CVE-2023-51780, CVE-2023-51782, CVE-2023-52356, CVE-2024-0340, CVE-2024-0727, CVE-2024-0775, CVE-2024-1086, CVE-2024-22365, CVE-2024-22667, CVE-2024-25062 See SUSE link below for individual scores for each CVE.
https://www.suse.com/security/cve/This hyperlink is taking you to a website outside of Dell Technologies.
MySQL CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961 See NVD link below for individual scores for each CVE. 
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
 
Oracle Java CVE-2023-22025, CVE-2023-22067, CVE-2023-2208, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952 See NVD link below for individual scores for each CVE. 
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
 
Jsch CVE-2023-48795 See NVD link below for individual scores for each CVE. 
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
Jetty CVE-2023-26048, CVE-2023-26049 See NVD link below for individual scores for each CVE. 
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
Apache Tomcat CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 See NVD link below for individual scores for each CVE. 
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

CVEs Addressed Product Software/Firmware Affected Versions Remediated Versions Link
CVE-2018-1311, CVE-2019-14889, CVE-2020-1730, CVE-2020-16135, CVE-2020-26555, CVE-2021-3634, CVE-2021-26345, CVE-2021-33631, CVE-2021-46766, CVE-2021-46774, CVE-2022-1210, CVE-2022-1622, CVE-2022-2586, CVE-2022-3107, CVE-2022-3108, CVE-2022-3564, CVE-2022-4662, CVE-2022-23820, CVE-2022-23830, CVE-2022-40090, CVE-2023-0394, CVE-2023-0461, CVE-2023-0950, CVE-2023-1667, CVE-2023-1916, CVE-2023-2137, CVE-2023-2255, CVE-2023-2283, CVE-2023-2704, CVE-2023-2731, CVE-2023-3776, CVE-2023-4039, CVE-2023-4255, CVE-2023-4750, CVE-2023-5344, CVE-2023-5441, CVE-2023-5535, CVE-2023-5678, CVE-2023-5717, CVE-2023-6004, CVE-2023-6040, CVE-2023-6121, CVE-2023-6356, CVE-2023-6535, CVE-2023-6536, CVE-2023-6597, CVE-2023-6606, CVE-2023-6610, CVE-2023-6918, CVE-2023-6931, CVE-2023-6932, CVE-2023-7207, CVE-2023-20521, CVE-2023-20526, CVE-2023-20533, CVE-2023-20566, CVE-2023-20519, CVE-2023-20592, CVE-2023-23454, CVE-2023-26965, CVE-2023-27043, CVE-2023-31083, CVE-2023-37536, CVE-2023-38473, CVE-2023-39197, CVE-2023-39198, CVE-2023-39804, CVE-2023-40217, CVE-2023-45322, CVE-2023-45803, CVE-2023-45863, CVE-2023-45871, CVE-2023-46246, CVE-2023-46838, CVE-2023-47233, CVE-2023-48231, CVE-2023-48232, CVE-2023-48233, CVE-2023-48234, CVE-2023-48235, CVE-2023-48236, CVE-2023-48237, CVE-2023-48706, CVE-2023-48795, CVE-2023-50495, CVE-2023-51042, CVE-2023-51043, CVE-2023-51385, CVE-2023-51779, CVE-2023-51780, CVE-2023-51782, CVE-2023-52356, CVE-2024-0340, CVE-2024-0727, CVE-2024-0775, CVE-2024-1086, CVE-2024-22365, CVE-2024-22667, CVE-2024-25062, CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Resource Manager vApp Versions prior to 4.10.0.3
 		 4.10.0.3 https://support.emc.com/downloads/34247_SRM
 
CVE-2018-1311, CVE-2019-14889, CVE-2020-1730, CVE-2020-16135, CVE-2020-26555, CVE-2021-3634, CVE-2021-26345, CVE-2021-33631, CVE-2021-46766, CVE-2021-46774, CVE-2022-1210, CVE-2022-1622, CVE-2022-2586, CVE-2022-3107, CVE-2022-3108, CVE-2022-3564, CVE-2022-4662, CVE-2022-23820, CVE-2022-23830, CVE-2022-40090, CVE-2023-0394, CVE-2023-0461, CVE-2023-0950, CVE-2023-1667, CVE-2023-1916, CVE-2023-2137, CVE-2023-2255, CVE-2023-2283, CVE-2023-2704, CVE-2023-2731, CVE-2023-3776, CVE-2023-4039, CVE-2023-4255, CVE-2023-4750, CVE-2023-5344, CVE-2023-5441, CVE-2023-5535, CVE-2023-5678, CVE-2023-5717, CVE-2023-6004, CVE-2023-6040, CVE-2023-6121, CVE-2023-6356, CVE-2023-6535, CVE-2023-6536, CVE-2023-6597, CVE-2023-6606, CVE-2023-6610, CVE-2023-6918, CVE-2023-6931, CVE-2023-6932, CVE-2023-7207, CVE-2023-20521, CVE-2023-20526, CVE-2023-20533, CVE-2023-20566, CVE-2023-20519, CVE-2023-20592, CVE-2023-23454, CVE-2023-26965, CVE-2023-27043, CVE-2023-31083, CVE-2023-37536, CVE-2023-38473, CVE-2023-39197, CVE-2023-39198, CVE-2023-39804, CVE-2023-40217, CVE-2023-45322, CVE-2023-45803, CVE-2023-45863, CVE-2023-45871, CVE-2023-46246, CVE-2023-46838, CVE-2023-47233, CVE-2023-48231, CVE-2023-48232, CVE-2023-48233, CVE-2023-48234, CVE-2023-48235, CVE-2023-48236, CVE-2023-48237, CVE-2023-48706, CVE-2023-48795, CVE-2023-50495, CVE-2023-51042, CVE-2023-51043, CVE-2023-51385, CVE-2023-51779, CVE-2023-51780, CVE-2023-51782, CVE-2023-52356, CVE-2024-0340, CVE-2024-0727, CVE-2024-0775, CVE-2024-1086, CVE-2024-22365, CVE-2024-22667, CVE-2024-25062, CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Monitoring and Reporting vApp Versions prior to 4.10.0.3
 		 4.10.0.3 https://support.emc.com/downloads/40532_SMR
 
CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Resource Manager
 		 Windows/Linux Update Versions prior to 4.10.0.3 4.10.0.3 https://support.emc.com/downloads/34247_SRM
 
CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Monitoring and Reporting Windows Update/Linux Update Versions prior to 4.10.0.3 4.10.0.3 https://support.emc.com/downloads/40532_SMR
CVEs Addressed Product Software/Firmware Affected Versions Remediated Versions Link
CVE-2018-1311, CVE-2019-14889, CVE-2020-1730, CVE-2020-16135, CVE-2020-26555, CVE-2021-3634, CVE-2021-26345, CVE-2021-33631, CVE-2021-46766, CVE-2021-46774, CVE-2022-1210, CVE-2022-1622, CVE-2022-2586, CVE-2022-3107, CVE-2022-3108, CVE-2022-3564, CVE-2022-4662, CVE-2022-23820, CVE-2022-23830, CVE-2022-40090, CVE-2023-0394, CVE-2023-0461, CVE-2023-0950, CVE-2023-1667, CVE-2023-1916, CVE-2023-2137, CVE-2023-2255, CVE-2023-2283, CVE-2023-2704, CVE-2023-2731, CVE-2023-3776, CVE-2023-4039, CVE-2023-4255, CVE-2023-4750, CVE-2023-5344, CVE-2023-5441, CVE-2023-5535, CVE-2023-5678, CVE-2023-5717, CVE-2023-6004, CVE-2023-6040, CVE-2023-6121, CVE-2023-6356, CVE-2023-6535, CVE-2023-6536, CVE-2023-6597, CVE-2023-6606, CVE-2023-6610, CVE-2023-6918, CVE-2023-6931, CVE-2023-6932, CVE-2023-7207, CVE-2023-20521, CVE-2023-20526, CVE-2023-20533, CVE-2023-20566, CVE-2023-20519, CVE-2023-20592, CVE-2023-23454, CVE-2023-26965, CVE-2023-27043, CVE-2023-31083, CVE-2023-37536, CVE-2023-38473, CVE-2023-39197, CVE-2023-39198, CVE-2023-39804, CVE-2023-40217, CVE-2023-45322, CVE-2023-45803, CVE-2023-45863, CVE-2023-45871, CVE-2023-46246, CVE-2023-46838, CVE-2023-47233, CVE-2023-48231, CVE-2023-48232, CVE-2023-48233, CVE-2023-48234, CVE-2023-48235, CVE-2023-48236, CVE-2023-48237, CVE-2023-48706, CVE-2023-48795, CVE-2023-50495, CVE-2023-51042, CVE-2023-51043, CVE-2023-51385, CVE-2023-51779, CVE-2023-51780, CVE-2023-51782, CVE-2023-52356, CVE-2024-0340, CVE-2024-0727, CVE-2024-0775, CVE-2024-1086, CVE-2024-22365, CVE-2024-22667, CVE-2024-25062, CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Resource Manager vApp Versions prior to 4.10.0.3
 		 4.10.0.3 https://support.emc.com/downloads/34247_SRM
 
CVE-2018-1311, CVE-2019-14889, CVE-2020-1730, CVE-2020-16135, CVE-2020-26555, CVE-2021-3634, CVE-2021-26345, CVE-2021-33631, CVE-2021-46766, CVE-2021-46774, CVE-2022-1210, CVE-2022-1622, CVE-2022-2586, CVE-2022-3107, CVE-2022-3108, CVE-2022-3564, CVE-2022-4662, CVE-2022-23820, CVE-2022-23830, CVE-2022-40090, CVE-2023-0394, CVE-2023-0461, CVE-2023-0950, CVE-2023-1667, CVE-2023-1916, CVE-2023-2137, CVE-2023-2255, CVE-2023-2283, CVE-2023-2704, CVE-2023-2731, CVE-2023-3776, CVE-2023-4039, CVE-2023-4255, CVE-2023-4750, CVE-2023-5344, CVE-2023-5441, CVE-2023-5535, CVE-2023-5678, CVE-2023-5717, CVE-2023-6004, CVE-2023-6040, CVE-2023-6121, CVE-2023-6356, CVE-2023-6535, CVE-2023-6536, CVE-2023-6597, CVE-2023-6606, CVE-2023-6610, CVE-2023-6918, CVE-2023-6931, CVE-2023-6932, CVE-2023-7207, CVE-2023-20521, CVE-2023-20526, CVE-2023-20533, CVE-2023-20566, CVE-2023-20519, CVE-2023-20592, CVE-2023-23454, CVE-2023-26965, CVE-2023-27043, CVE-2023-31083, CVE-2023-37536, CVE-2023-38473, CVE-2023-39197, CVE-2023-39198, CVE-2023-39804, CVE-2023-40217, CVE-2023-45322, CVE-2023-45803, CVE-2023-45863, CVE-2023-45871, CVE-2023-46246, CVE-2023-46838, CVE-2023-47233, CVE-2023-48231, CVE-2023-48232, CVE-2023-48233, CVE-2023-48234, CVE-2023-48235, CVE-2023-48236, CVE-2023-48237, CVE-2023-48706, CVE-2023-48795, CVE-2023-50495, CVE-2023-51042, CVE-2023-51043, CVE-2023-51385, CVE-2023-51779, CVE-2023-51780, CVE-2023-51782, CVE-2023-52356, CVE-2024-0340, CVE-2024-0727, CVE-2024-0775, CVE-2024-1086, CVE-2024-22365, CVE-2024-22667, CVE-2024-25062, CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Monitoring and Reporting vApp Versions prior to 4.10.0.3
 		 4.10.0.3 https://support.emc.com/downloads/40532_SMR
 
CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Resource Manager
 		 Windows/Linux Update Versions prior to 4.10.0.3 4.10.0.3 https://support.emc.com/downloads/34247_SRM
 
CVE-2023-5363, CVE-2023-38545, CVE-2023-39975, CVE-2023-41105, CVE-2023-50164, CVE-2024-20961,CVE-2023-22025, CVE-2023-22067, CVE-2023-22081, CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20922, CVE-2024-20923, CVE-2024-20925, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952,  CVE-2023-26048, CVE-2023-26049,  CVE-2023-44487, CVE-2023-42794, CVE-2023-42795, CVE-2023-45648, CVE-2023-46589 Dell Storage Monitoring and Reporting Windows Update/Linux Update Versions prior to 4.10.0.3 4.10.0.3 https://support.emc.com/downloads/40532_SMR

Revision History

RevisionDateDescription
1.02024-04-08Initial Release
2.02024-04-11Added CVE-2023-22025, CVE-2023-22067, CVE-2023-22081

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

SRM, Storage Monitoring and Reporting, SRM
Article Properties
Article Number: 000223919
Article Type: Dell Security Advisory
Last Modified: 11 Apr 2024
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.