DSA-2024-010: Security Update for Dell Data Protection Central for Multiple Third-Party Vulnerabilities
Riepilogo: Dell Data Protection Central remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Questo articolo si applica a
Questo articolo non si applica a
Questo articolo non è legato a un prodotto specifico.
Non tutte le versioni del prodotto sono identificate in questo articolo.
Impatto
Critical
Dettagli
| Third-party Component | CVEs | More Information |
|---|---|---|
| IAM service |
CVE-2023-36054, CVE-2023-4039, CVE-2023-38039, CVE-2023-25193, CVE-2018-9234, CVE-2023-40217, CVE-2023-31484, CVE-2023-21930, CVE-2023-34035, CVE-2023-24329, CVE-2023-28322 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/  |
| node.js | CVE-2022-35255, CVE-2023-32002, CVE-2022-43548, CVE-2023-30589, CVE-2023-23918, CVE-2022-32212 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| Apache Tomcat | CVE-2023-28709 | https://nvd.nist.gov/vuln/detail/CVE-2023-28709 |
| get-func-name | CVE-2023-43646 | https://nvd.nist.gov/vuln/detail/CVE-2023-43646 |
| google guava | CVE-2023-2976 | https://nvd.nist.gov/vuln/detail/CVE-2023-2976 |
| cookiejar | CVE-2022-25901 | https://nvd.nist.gov/vuln/detail/CVE-2022-25901 |
| semver | CVE-2022-25883 | https://nvd.nist.gov/vuln/detail/CVE-2022-25883 |
| Okio | CVE-2023-3635 | https://nvd.nist.gov/vuln/detail/CVE-2023-3635 |
| spring boot | CVE-2023-20873, CVE-2023-20883 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| spring security | CVE-2023-34034 | https://nvd.nist.gov/vuln/detail/CVE-2023-34034) |
Prodotti interessati e correzione
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell Data Protection Central | Data Protection Central OS Update (SUSE SLES 12 SP5) | Version 19.10 | Version 19.10.0-4 | Data Protection Central 19.10.0-4 |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell Data Protection Central | Data Protection Central OS Update (SUSE SLES 12 SP5) | Version 19.10 | Version 19.10.0-4 | Data Protection Central 19.10.0-4 |
Platform: SUSE Linux Enterprise Server 12 SP5
See the latest ‘Dell Data Protection Central 19.10 Release Notes’ in Dell Data Protection Central 19.10 Release Notes | Dell US
See the latest ‘Dell Data Protection Central 19.10 Release Notes’ in Dell Data Protection Central 19.10 Release Notes | Dell US
Cronologia delle revisioni
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-01-17 | Initial Release |
Informazioni correlate
Dichiarazione di non responsabilità
Prodotti interessati
Data Protection CentralProprietà dell'articolo
Numero articolo: 000221194
Tipo di articolo: Dell Security Advisory
Ultima modifica: 19 set 2025
Trova risposta alle tue domande dagli altri utenti Dell
Support Services
Verifica che il dispositivo sia coperto dai Servizi di supporto.