DSA-2022-167: Dell Connectrix Security Update for Multiple Vulnerabilities

概要: Dell Connectrix (Cisco) remediation is available for multiple Spring vulnerabilities that may be exploited by malicious users to compromise the affected system.

この記事は次に適用されます: この記事は次には適用されません: この記事は、特定の製品に関連付けられていません。 すべての製品パージョンがこの記事に記載されているわけではありません。
他のリソースを確認する

影響

Critical

詳細

 Third-party Component CVEs More information
Spring Cloud Function CVE-2022-22963 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22963 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
Spring MVC or Spring WebFlux application CVE-2022-22965 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22965 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
 Third-party Component CVEs More information
Spring Cloud Function CVE-2022-22963 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22963 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
Spring MVC or Spring WebFlux application CVE-2022-22965 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) for individual scores for each CVE.
CVE-2022-22965 | Security | VMware TanzuThis hyperlink is taking you to a website outside of Dell Technologies.
デル・テクノロジーズでは、すべてのお客様に対して、CVSSベース スコアに加えて、特定のセキュリティの脆弱性に付随する潜在的な重要度に影響する可能性のある現状スコアや環境スコアも考慮することをお勧めしています。

影響を受ける製品と修復

CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-22963 Connectrix (Cisco) DCNM and NDFC
 		 DCNM versions before 11.5(4) and NDFC versions before 12.0(2f)
 		 NDFC 12.1(1e) Support for Connectrix | Drivers & Downloads | Dell US
CVE-2022-22965
CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-22963 Connectrix (Cisco) DCNM and NDFC
 		 DCNM versions before 11.5(4) and NDFC versions before 12.0(2f)
 		 NDFC 12.1(1e) Support for Connectrix | Drivers & Downloads | Dell US
CVE-2022-22965

変更履歴

RevisionDateDescription
1.02022-07-19Initial Release
2.02023-02-14Corrected "Affected Product" section under "Article Properties."

関連情報

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

法的免責事項

対象製品

Connectrix MDS-Series, Connectrix MDS-9132T, Connectrix MDS-9148S, Connectrix MDS-9148T, Connectrix MDS-9220i, Connectrix MDS-9250i, Connectrix MDS-9396S, Connectrix MDS-9396S PSI, Connectrix MDS-9396T, Connectrix MDS-9706, Connectrix MDS-9706-V2 , Connectrix MDS-9710, Connectrix MDS-9710-V2, Connectrix MDS-9718, Connectrix MDS-9718-V3, Connectrix MDS-Series Data Center Network Manager, Connectrix MDS-Series Nexus Dashboard Fabric Controller, Product Security Information ...
文書のプロパティ
文書番号: 000201622
文書の種類: Dell Security Advisory
最終更新: 18 9月 2025
質問に対する他のDellユーザーからの回答を見つける
サポート サービス
お使いのデバイスがサポート サービスの対象かどうかを確認してください。