Artikelnummer: 000194624

DSA-2021-282: Dell EMC Secure Connect Gateway and SupportAssist Enterprise 4.x Security Update for Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228 and CVE-2021-45046)

Samenvatting: Dell EMC Secure Connect Gateway remediation is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...

Article content

Impact

Critical

Gegevens

Third-party Component	CVEs	More information
Apache Log4j	CVE-2021-44228	Apache Log4j Remote Code Execution
Apache Log4j	CVE-2021-45046	Apache Log4j Remote Code Execution

Third-party Component	CVEs	More information
Apache Log4j	CVE-2021-44228	Apache Log4j Remote Code Execution
Apache Log4j	CVE-2021-45046	Apache Log4j Remote Code Execution

Dell Technologies raadt aan dat alle klanten rekening houden met zowel de basisscore van CVSS als alle relevante tijdelijke en omgevingsscores die gevolgen kunnen hebben voor de mogelijke ernst van de specifieke beveiligingsproblemen.

Getroffen producten en herstel

Product	Affected Versions	Updated Versions	Link to Update
Secure Connect Gateway - Virtual Edition	5.00.05 and earlier versions (OVF and VHD)	5.00.07 (OVF and VHD)	https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
Secure Connect Gateway - Application Edition	5.00.05 and earlier versions (Windows and Linux)	5.00.06 (Windows and Linux)	https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
SupportAssist Enterprise	4.0.06 and earlier versions (OVF and VHD)	Upgrade to Secure Connect Gateway 5.00.07 (OVF and VHD)	https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview

Note: The above table may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Product	Affected Versions	Updated Versions	Link to Update
Secure Connect Gateway - Virtual Edition	5.00.05 and earlier versions (OVF and VHD)	5.00.07 (OVF and VHD)	https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
Secure Connect Gateway - Application Edition	5.00.05 and earlier versions (Windows and Linux)	5.00.06 (Windows and Linux)	https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview
SupportAssist Enterprise	4.0.06 and earlier versions (OVF and VHD)	Upgrade to Secure Connect Gateway 5.00.07 (OVF and VHD)	https://www.dell.com/support/home/en-us/product-support/product/secure-connect-gateway/overview

Note: The above table may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Revisiegeschiedenis

Revision	Date	Description
1.0	2021-12-17	Initial Release
1.1	2022-01-20	Updated the Affected Versions field

Verwante informatie

Juridische informatie

Artikeleigenschappen

Getroffen product

Secure Connect Gateway, Product Security Information, Secure Connect Gateway, Secure Connect Gateway - Application Edition, Secure Connect Gateway - Virtual Edition

Product

SupportAssist Enterprise, SupportAssist Enterprise Virtual Appliance, SupportAssist for Home PCs, SupportAssist for Business PCs, SupportAssist Enterprise 1.x, SupportAssist Enterprise Application 2.x, SupportAssist Enterprise Virtual Appliance 4.x

Datum laatst gepubliceerd

24 jan. 2022

Versie

Artikeltype

Dell Security Advisory

Terug naar boven

Welkom

Welkom bij Dell