DSA-2021-280: Dell NetWorker Security Update for Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105)

Riepilogo: Dell NetWorker remediation is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell Technologies recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...

Questo articolo si applica a Questo articolo non si applica a Questo articolo non è legato a un prodotto specifico. Non tutte le versioni del prodotto sono identificate in questo articolo.
Scopri le altre risorse

Impatto

Critical

Dettagli

Third-party Component  CVEs  More information 
Apache Log4j  CVE-2021-44228  Apache Log4j Remote Code Execution This hyperlink is taking you to a website outside of Dell Technologies. 
CVE-2021-45046 
CVE-2021-45105
Third-party Component  CVEs  More information 
Apache Log4j  CVE-2021-44228  Apache Log4j Remote Code Execution This hyperlink is taking you to a website outside of Dell Technologies. 
CVE-2021-45046 
CVE-2021-45105
Dell Technologies raccomanda a tutti i clienti di prendere in considerazione sia il punteggio base CVSS, sia ogni eventuale punteggio temporale o ambientale che possa avere effetti sul livello di gravità potenziale associato a una specifica vulnerabilità di sicurezza.

Prodotti interessati e correzione

Product  Affected Versions  Updated Versions  Link to Update 
NetWorker Server
 		 19.5.x
 		 19.5.0.5,19.6.0 And Later Versions https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers
 
19.4.x 19.4.0.6
NetWorker Virtual Edition 19.5.x 19.5.0.5,19.6.0 And Later Versions https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers

Note: Only NVE for VMware and upgrade images are available for download.
19.4.x 19.4.0.6

Note:
  • NetWorker Storage Node, NetWorker Client, NetWorker Management Console, NetWorker Management UI, NetWorker CloudBoost, and NetWorker vProxy are not vulnerable.
  • NetWorker 19.1.x, 19.2.x, and 19.3.x are not vulnerable.
Product  Affected Versions  Updated Versions  Link to Update 
NetWorker Server
 		 19.5.x
 		 19.5.0.5,19.6.0 And Later Versions https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers
 
19.4.x 19.4.0.6
NetWorker Virtual Edition 19.5.x 19.5.0.5,19.6.0 And Later Versions https://www.dell.com/support/home/en-ca/product-support/product/networker/drivers

Note: Only NVE for VMware and upgrade images are available for download.
19.4.x 19.4.0.6

Note:
  • NetWorker Storage Node, NetWorker Client, NetWorker Management Console, NetWorker Management UI, NetWorker CloudBoost, and NetWorker vProxy are not vulnerable.
  • NetWorker 19.1.x, 19.2.x, and 19.3.x are not vulnerable.

Cronologia delle revisioni

Revision Date Description 
1.02021-12-15Workaround
1.12021-12-17Workaround update
1.22021-12-23Patch added
1.32021-12-2719.3 added as not vulnerable
1.42022-01-03updated additional CVE addressed
1.52022-01-11added 19.6 release to Affected Products and Remediation table
1.62022-01-14updated 19.4 release, removed workaround
1.72022-11-29Minor change in Updated Version Section

Informazioni correlate

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Dichiarazione di non responsabilità

Prodotti interessati

NetWorker Family, NetWorker, Product Security Information
Proprietà dell'articolo
Numero articolo: 000194541
Tipo di articolo: Dell Security Advisory
Ultima modifica: 12 mag 2026
Trova risposta alle tue domande dagli altri utenti Dell
Support Services
Verifica che il dispositivo sia coperto dai Servizi di supporto.