DSA-2019-080: Dell SupportAssist Enterprise Security Update for Eclipse Jetty Server Vulnerability

Resumen: Dell SupportAssist Enterprise has been updated to address a security vulnerability in the Eclipse Jetty Server component.

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.
Consulte estos recursos

Impacto

Critical

Detalles

The Eclipse Jetty Server component in Dell SupportAssist Enterprise has been updated for the following vulnerability:

  • CVE-2017-7658

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

The Eclipse Jetty Server component in Dell SupportAssist Enterprise has been updated for the following vulnerability:

  • CVE-2017-7658

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

Affected Products:
Dell SupportAssist Enterprise version 2.0.20 and prior versions

Remediation:

The following Dell SupportAssist Enterprise release contains a resolution to this vulnerability:

  • Dell SupportAssist Enterprise version 2.0.21

Dell Technologies recommends all customers update at the earliest opportunity.

Method 1: Auto Update

Dell SupportAssist Enterprise automatically upgrades to the latest version available, if automatic updates are enabled.

Method 2: Manual Update

To update manually, download and install the latest product version for:

SupportAssist Enterprise Windows management server 

SupportAssist Enterprise Linux management server

Go to Dell Drivers & Downloads for updates on the applicable products.

Customers may use one of the Dell Notification Solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

 

Affected Products:
Dell SupportAssist Enterprise version 2.0.20 and prior versions

Remediation:

The following Dell SupportAssist Enterprise release contains a resolution to this vulnerability:

  • Dell SupportAssist Enterprise version 2.0.21

Dell Technologies recommends all customers update at the earliest opportunity.

Method 1: Auto Update

Dell SupportAssist Enterprise automatically upgrades to the latest version available, if automatic updates are enabled.

Method 2: Manual Update

To update manually, download and install the latest product version for:

SupportAssist Enterprise Windows management server 

SupportAssist Enterprise Linux management server

Go to Dell Drivers & Downloads for updates on the applicable products.

Customers may use one of the Dell Notification Solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

 

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

SupportAssist Enterprise 1.x, SupportAssist Enterprise Application 2.x
Propiedades del artículo
Número del artículo: 000177817
Tipo de artículo: Dell Security Advisory
Última modificación: 22 jul 2025
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.