Artikelnummer: 000194652

DSA-2021-276: Dell EMC OpenManage Enterprise Services Security Update for Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

Samenvatting: Dell EMC OpenManage Enterprise Services remediation is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. (Note: OpenManage Services is not affected by CVE-2021-45105). ...

Article content

Impact

Critical

Gegevens

Third-party Component	CVEs	More information
Apache Log4j	CVE-2021-44228	Apache Log4j Remote Code Execution
Apache Log4j	CVE-2021-45046	Apache Log4j Remote Code Execution

Third-party Component	CVEs	More information
Apache Log4j	CVE-2021-44228	Apache Log4j Remote Code Execution
Apache Log4j	CVE-2021-45046	Apache Log4j Remote Code Execution

Dell Technologies raadt aan dat alle klanten rekening houden met zowel de basisscore van CVSS als alle relevante tijdelijke en omgevingsscores die gevolgen kunnen hebben voor de mogelijke ernst van de specifieke beveiligingsproblemen.

Getroffen producten en herstel

Product	Affected Versions	Updated Versions	Link to Update
Dell EMC OpenManage Enterprise Services	Version 1.2 and earlier.	1.2.1	https://www.dell.com/support/home/en-us/drivers/driversdetails?driverid=0w96t Or If the Updates are enabled to download from dell.com, check for Updates in “Console and Plugins” page of OpenManage Enterprise and install version 1.2.1. Or If the updates are enabled on internal network share then, download the artifacts from: https://downloads.dell.com/openmanage_enterprise/plugins/saep/plugins_catalog.json https://downloads.dell.com/openmanage_enterprise/plugins/saep/plugins_catalog.json.asc https://downloads.dell.com/openmanage_enterprise/plugins/saep/archives/ome_saeplugin_1.2.1.tar.gz

Product	Affected Versions	Updated Versions	Link to Update
Dell EMC OpenManage Enterprise Services	Version 1.2 and earlier.	1.2.1	https://www.dell.com/support/home/en-us/drivers/driversdetails?driverid=0w96t Or If the Updates are enabled to download from dell.com, check for Updates in “Console and Plugins” page of OpenManage Enterprise and install version 1.2.1. Or If the updates are enabled on internal network share then, download the artifacts from: https://downloads.dell.com/openmanage_enterprise/plugins/saep/plugins_catalog.json https://downloads.dell.com/openmanage_enterprise/plugins/saep/plugins_catalog.json.asc https://downloads.dell.com/openmanage_enterprise/plugins/saep/archives/ome_saeplugin_1.2.1.tar.gz

Revisiegeschiedenis

Revision	Date	Description
1.0	2021-12-20	Initial Release

DSA-2021-276: Dell EMC OpenManage Enterprise Services Security Update for Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

Article content

Impact

Gegevens

Getroffen producten en herstel

Revisiegeschiedenis

Verwante informatie

Juridische informatie

Artikeleigenschappen

Getroffen product

Product

Datum laatst gepubliceerd

Versie

Artikeltype

Welkom

Welkom bij Dell

DSA-2021-276: Dell EMC OpenManage Enterprise Services Security Update for Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

Article content

Impact

Gegevens

Getroffen producten en herstel

Revisiegeschiedenis

Verwante informatie

Juridische informatie

Artikeleigenschappen

Getroffen product

Product

Datum laatst gepubliceerd

Versie

Artikeltype