DSA-2022-064: Dell EMC CloudLink Security Update for Security Vulnerabilities
Resumen: Dell EMC CloudLink remediation is available for security vulnerabilities that may potentially be exploited by malicious users to compromise the affected system.
Este artículo se aplica a
Este artículo no se aplica a
Este artículo no está vinculado a ningún producto específico.
No se identifican todas las versiones del producto en este artículo.
Impacto
High
Detalles
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24414 | Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should not be used in request URL to avoid such attacks. | 7.6 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24414 | Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should not be used in request URL to avoid such attacks. | 7.6 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Corrección y productos afectados
| Product | Affected Versions | Updated Versions | Link to Update | |
| Dell EMC CloudLink | Versions before 7.1.3 | 7.1.3 | https://www.dell.com/support/home/en-us/product-support/product/cloudlink-securevm/drivers | |
| Product | Affected Versions | Updated Versions | Link to Update | |
| Dell EMC CloudLink | Versions before 7.1.3 | 7.1.3 | https://www.dell.com/support/home/en-us/product-support/product/cloudlink-securevm/drivers | |
Historial de revisiones
| Revision | Date | Description |
| 1.0 | 2022-03-16 | Initial Release |
Información relacionada
Descargo de responsabilidad
Productos afectados
CloudLinkProductos
Product Security InformationPropiedades del artículo
Número del artículo: 000197425
Tipo de artículo: Dell Security Advisory
Última modificación: 18 sept 2025
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.