DSA-2024-010: Security Update for Dell Data Protection Central for Multiple Third-Party Vulnerabilities
Yhteenveto: Dell Data Protection Central remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Tämä artikkeli koskee tuotetta
Tämä artikkeli ei koske tuotetta
Tämä artikkeli ei liity tiettyyn tuotteeseen.
Tässä artikkelissa ei yksilöidä kaikkia tuoteversioita.
Vaikutus
Critical
Tiedot
| Third-party Component | CVEs | More Information |
|---|---|---|
| IAM service |
CVE-2023-36054, CVE-2023-4039, CVE-2023-38039, CVE-2023-25193, CVE-2018-9234, CVE-2023-40217, CVE-2023-31484, CVE-2023-21930, CVE-2023-34035, CVE-2023-24329, CVE-2023-28322 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/  |
| node.js | CVE-2022-35255, CVE-2023-32002, CVE-2022-43548, CVE-2023-30589, CVE-2023-23918, CVE-2022-32212 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| Apache Tomcat | CVE-2023-28709 | https://nvd.nist.gov/vuln/detail/CVE-2023-28709 |
| get-func-name | CVE-2023-43646 | https://nvd.nist.gov/vuln/detail/CVE-2023-43646 |
| google guava | CVE-2023-2976 | https://nvd.nist.gov/vuln/detail/CVE-2023-2976 |
| cookiejar | CVE-2022-25901 | https://nvd.nist.gov/vuln/detail/CVE-2022-25901 |
| semver | CVE-2022-25883 | https://nvd.nist.gov/vuln/detail/CVE-2022-25883 |
| Okio | CVE-2023-3635 | https://nvd.nist.gov/vuln/detail/CVE-2023-3635 |
| spring boot | CVE-2023-20873, CVE-2023-20883 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| spring security | CVE-2023-34034 | https://nvd.nist.gov/vuln/detail/CVE-2023-34034) |
Tuotteet, joihin asia vaikuttaa, ja tilanteen korjaaminen
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell Data Protection Central | Data Protection Central OS Update (SUSE SLES 12 SP5) | Version 19.10 | Version 19.10.0-4 | Data Protection Central 19.10.0-4 |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell Data Protection Central | Data Protection Central OS Update (SUSE SLES 12 SP5) | Version 19.10 | Version 19.10.0-4 | Data Protection Central 19.10.0-4 |
Platform: SUSE Linux Enterprise Server 12 SP5
See the latest ‘Dell Data Protection Central 19.10 Release Notes’ in Dell Data Protection Central 19.10 Release Notes | Dell US
See the latest ‘Dell Data Protection Central 19.10 Release Notes’ in Dell Data Protection Central 19.10 Release Notes | Dell US
Versiohistoria
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-01-17 | Initial Release |
Asiaan liittyvät tiedot
Vastuuvapauslauseke
Tuotteet, joihin vaikutus kohdistuu
Data Protection CentralArtikkelin ominaisuudet
Artikkelin numero: 000221194
Artikkelin tyyppi: Dell Security Advisory
Viimeksi muutettu: 19 syysk. 2025
Etsi vastauksia kysymyksiisi muilta Dell-käyttäjiltä
Tukipalvelut
Tarkista, kuuluuko laitteesi tukipalveluiden piiriin.