Numéro d’article: 000208258
High
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
| CVE-2023-24576 | EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service (nsrexecd) irrespective of any authentication used. | 7.5 High |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
| CVEs Addressed | Product | Affected Versions | Updated Versions | Link to Update |
| CVE-2023-24576 | Dell NetWorker, NVE |
19.7.0.2 and earlier versions 19.8 19.7.1 |
19.7.0.3 and later versions 19.8.0.1 and later versions |
https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers |
| CVEs Addressed | Product | Affected Versions | Updated Versions | Link to Update |
| CVE-2023-24576 | Dell NetWorker, NVE |
19.7.0.2 and earlier versions 19.8 19.7.1 |
19.7.0.3 and later versions 19.8.0.1 and later versions |
https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers |
| Impacted Components |
Platforms |
| NetWorker Client | Windows, Linux (CentOS, OEL, SuSE, Red Hat Enterprise Linux, Debian, Ubuntu, Fedora), UNIX (HP-UX, AIX, Solaris), Mac (OS-X) |
Delete nsrdump from system.
| Revision | Date | Description |
| 1.0 | 2023-02-03 | Initial Release |
| 2.0 | 2023-04-03 | Changes made to "Affected Versions" & "Updated Versions" under "Affected Products and Remediation" section and impacted components under "Additional Info" section. |
NetWorker Family, NetWorker, NetWorker Series, NetWorker Module, Product Security Information
03 avr. 2023
3
Dell Security Advisory