DSA-2021-263: Dell EMC Elastic Cloud Storage Security Update for Third-Party Vulnerabilities

Riepilogo: Dell EMC Elastic Cloud Storage 3.6.2.1 and 3.6.2.2 contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. ...

Prodotti interessati e correzione

Dichiarazione di non responsabilità

Prodotti interessati

Questo articolo si applica a Questo articolo non si applica a Questo articolo non è legato a un prodotto specifico. Non tutte le versioni del prodotto sono identificate in questo articolo.

Scopri le altre risorse

Impatto

Critical

Dettagli

Third-party Component	CVEs	More Information
apache ant	CVE-2020-11979	See NVD (http://nvd.nist.gov/) for individual scores for each CVE.
Apache thrift	CVE-2020-13949
Apache log4j	CVE-2021-44228
Apache log4j	CVE-2021-45046
apache2	CVE-2020-35452
	CVE-2021-26690
	CVE-2021-26691
	CVE-2021-30641
	CVE-2021-31618
Bind	CVE-2020-8625
	CVE-2021-25214
	CVE-2021-25215
Cpio	CVE-2021-38185
Curl	CVE-2020-8231
	CVE-2020-8284
	CVE-2020-8285
	CVE-2020-8286
	CVE-2021-22876
	CVE-2021-22898
	CVE-2021-22922
	CVE-2021-22923
	CVE-2021-22924
	CVE-2021-22925
cyrus-sasl	CVE-2019-19906
dbus-1	CVE-2020-12049
dbus-1	CVE-2020-35512
dhcp	CVE-2021-25217
file	CVE-2019-18218
FLAC	CVE-2020-0499
glib2	CVE-2021-27218
glib2	CVE-2021-27219
libesmtp	CVE-2019-19977
libgcrypt	CVE-2021-33560
libnettle	CVE-2021-3580
libsndfile	CVE-2018-13139
	CVE-2018-19432
	CVE-2018-19758
	CVE-2021-3246
libsolv	CVE-2019-20387
libsolv	CVE-2021-3200
libxml2	CVE-2021-3516
	CVE-2021-3517
	CVE-2021-3518
	CVE-2021-3537
nghttp2	CVE-2016-1544
	CVE-2018-1000168
	CVE-2019-9511
	CVE-2019-9513
	CVE-2020-11080
ntp	CVE-2018-8956
	CVE-2020-11868
	CVE-2020-13817
	CVE-2020-15025
openldap2	CVE-2020-25692
	CVE-2020-36221
	CVE-2020-36222
	CVE-2020-36223
	CVE-2020-36224
	CVE-2020-36225
	CVE-2020-36226
	CVE-2020-36227
	CVE-2020-36228
	CVE-2020-36229
	CVE-2020-36230
	CVE-2020-8023
	CVE-2021-27212
openssl-1_0_0	CVE-2021-23840
	CVE-2021-23841
	CVE-2021-3712
Permissions	CVE-2020-8025
python	CVE-2019-20916
python	CVE-2021-3177
python-cryptography	CVE-2020-36242
python-PyYAML	CVE-2020-14343
screen	CVE-2021-26937
Spring Framework	CVE-2018-15756
sqlite3	CVE-2015-3414
	CVE-2015-3415
	CVE-2016-6153
	CVE-2017-10989
	CVE-2017-2518
	CVE-2018-20346
	CVE-2018-8740
	CVE-2019-16168
	CVE-2019-19244
	CVE-2019-19317
	CVE-2019-19603
	CVE-2019-19645
	CVE-2019-19646
	CVE-2019-19880
	CVE-2019-19923
	CVE-2019-19924
	CVE-2019-19925
	CVE-2019-19926
	CVE-2019-19959
	CVE-2019-20218
	CVE-2019-8457
	CVE-2020-13434
	CVE-2020-13435
	CVE-2020-13630
	CVE-2020-13631
	CVE-2020-13632
	CVE-2020-15358
	CVE-2020-9327

Third-party Component	CVEs	More Information
apache ant	CVE-2020-11979	See NVD (http://nvd.nist.gov/) for individual scores for each CVE.
Apache thrift	CVE-2020-13949
Apache log4j	CVE-2021-44228
Apache log4j	CVE-2021-45046
apache2	CVE-2020-35452
	CVE-2021-26690
	CVE-2021-26691
	CVE-2021-30641
	CVE-2021-31618
Bind	CVE-2020-8625
	CVE-2021-25214
	CVE-2021-25215
Cpio	CVE-2021-38185
Curl	CVE-2020-8231
	CVE-2020-8284
	CVE-2020-8285
	CVE-2020-8286
	CVE-2021-22876
	CVE-2021-22898
	CVE-2021-22922
	CVE-2021-22923
	CVE-2021-22924
	CVE-2021-22925
cyrus-sasl	CVE-2019-19906
dbus-1	CVE-2020-12049
dbus-1	CVE-2020-35512
dhcp	CVE-2021-25217
file	CVE-2019-18218
FLAC	CVE-2020-0499
glib2	CVE-2021-27218
glib2	CVE-2021-27219
libesmtp	CVE-2019-19977
libgcrypt	CVE-2021-33560
libnettle	CVE-2021-3580
libsndfile	CVE-2018-13139
	CVE-2018-19432
	CVE-2018-19758
	CVE-2021-3246
libsolv	CVE-2019-20387
libsolv	CVE-2021-3200
libxml2	CVE-2021-3516
	CVE-2021-3517
	CVE-2021-3518
	CVE-2021-3537
nghttp2	CVE-2016-1544
	CVE-2018-1000168
	CVE-2019-9511
	CVE-2019-9513
	CVE-2020-11080
ntp	CVE-2018-8956
	CVE-2020-11868
	CVE-2020-13817
	CVE-2020-15025
openldap2	CVE-2020-25692
	CVE-2020-36221
	CVE-2020-36222
	CVE-2020-36223
	CVE-2020-36224
	CVE-2020-36225
	CVE-2020-36226
	CVE-2020-36227
	CVE-2020-36228
	CVE-2020-36229
	CVE-2020-36230
	CVE-2020-8023
	CVE-2021-27212
openssl-1_0_0	CVE-2021-23840
	CVE-2021-23841
	CVE-2021-3712
Permissions	CVE-2020-8025
python	CVE-2019-20916
python	CVE-2021-3177
python-cryptography	CVE-2020-36242
python-PyYAML	CVE-2020-14343
screen	CVE-2021-26937
Spring Framework	CVE-2018-15756
sqlite3	CVE-2015-3414
	CVE-2015-3415
	CVE-2016-6153
	CVE-2017-10989
	CVE-2017-2518
	CVE-2018-20346
	CVE-2018-8740
	CVE-2019-16168
	CVE-2019-19244
	CVE-2019-19317
	CVE-2019-19603
	CVE-2019-19645
	CVE-2019-19646
	CVE-2019-19880
	CVE-2019-19923
	CVE-2019-19924
	CVE-2019-19925
	CVE-2019-19926
	CVE-2019-19959
	CVE-2019-20218
	CVE-2019-8457
	CVE-2020-13434
	CVE-2020-13435
	CVE-2020-13630
	CVE-2020-13631
	CVE-2020-13632
	CVE-2020-15358
	CVE-2020-9327

Dell Technologies raccomanda a tutti i clienti di prendere in considerazione sia il punteggio base CVSS, sia ogni eventuale punteggio temporale o ambientale che possa avere effetti sul livello di gravità potenziale associato a una specifica vulnerabilità di sicurezza.

Prodotti interessati e correzione

Product	Affected Versions	Updated Versions	Link to Update
Dell EMC Elastic Cloud Storage	Versions before ECS 3.6.2.1	ECS 3.6.2.1, ECS 3.6.2.2 and later*	https://www.dell.com/support/home/en-us/product-support/product/ecs-appliance-/overview

Product	Affected Versions	Updated Versions	Link to Update
Dell EMC Elastic Cloud Storage	Versions before ECS 3.6.2.1	ECS 3.6.2.1, ECS 3.6.2.2 and later*	https://www.dell.com/support/home/en-us/product-support/product/ecs-appliance-/overview

Cronologia delle revisioni

Revision	Date	Description
1.0	20/12/2021	Initial Release
2.0	06/01/2022	Edited the Updated Version(s)

Informazioni correlate

Dichiarazione di non responsabilità

Prodotti interessati

Elastic Cloud Storage, Product Security Information

Numero articolo: 000194656

Tipo di articolo: Dell Security Advisory

Ultima modifica: 12 mag 2026

Verifica che il dispositivo sia coperto dai Servizi di supporto.

DSA-2021-263: Dell EMC Elastic Cloud Storage Security Update for Third-Party Vulnerabilities

Riepilogo: Dell EMC Elastic Cloud Storage 3.6.2.1 and 3.6.2.2 contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. ...

Impatto

Dettagli

Prodotti interessati e correzione

Cronologia delle revisioni

Informazioni correlate

Dichiarazione di non responsabilità

Prodotti interessati

Impatto

Dettagli

Prodotti interessati e correzione

Cronologia delle revisioni

Informazioni correlate

Dichiarazione di non responsabilità

Prodotti interessati

Proprietà dell'articolo

Trova risposta alle tue domande dagli altri utenti Dell

Support Services

Proprietà dell'articolo

Trova risposta alle tue domande dagli altri utenti Dell

Support Services

DSA-2021-263: Dell EMC Elastic Cloud Storage Security Update for Third-Party Vulnerabilities

Riepilogo: Dell EMC Elastic Cloud Storage 3.6.2.1 and 3.6.2.2 contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. ... Visualizza altro Visualizza meno

Articolo dettagliato

Impatto

Dettagli

Prodotti interessati e correzione

Cronologia delle revisioni

Informazioni correlate

Dichiarazione di non responsabilità

Prodotti interessati

Impatto

Dettagli

Prodotti interessati e correzione

Cronologia delle revisioni

Informazioni correlate

Dichiarazione di non responsabilità

Prodotti interessati

Proprietà dell'articolo

Trova risposta alle tue domande dagli altri utenti Dell

Support Services

Proprietà dell'articolo

Trova risposta alle tue domande dagli altri utenti Dell

Support Services

Riepilogo: Dell EMC Elastic Cloud Storage 3.6.2.1 and 3.6.2.2 contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. ...