Additional Information Regarding DSA-2023-412: Dell PowerProtect Vulnerabilities

Frequently Asked Questions

Q: How do I know if I am impacted?
A: See Dell Security Advisory DSA-2023-412 for a list of impacted products and platforms.

Q: What is the solution? How do I remediate this vulnerability?
A: All customers should run the steps defined in section "Affected Products and Remediation" of Dell Security Advisory DSA-2023-412. 

Q: Is Dell aware of these vulnerabilities being exploited?
A: We are not aware of any exploitation of these vulnerabilities now.

Q: Could a malicious actor exploit these vulnerabilities?
A: Each issue has different impact and different paths to exploitation. See Dell Security Advisory DSA-2023-412 for a full list of the vulnerabilities and their corresponding CVSS scores.

Q: Do these vulnerabilities only affect Dell PowerProtect Data Domain?
A: There are additional products impacted by these issues. See Dell Security Advisory DSA-2023-412 for a breakdown of the impacted products and their corresponding remediations.

Q: It is my understanding that SE commands are no longer available; how can I use these commands if needed?
A: Due to security hardening on the latest DDOS versions 7.7.5.25, 7.10.1.15, 7.13.0.20, 6.2.1.110 and above, SE mode has been deprecated. For future releases, additional commands are made available to assist with troubleshooting.

Q. If a customer has already upgraded to DDOS 7.13.0.10, is there any action they must take?
Any customer who has upgraded to DDOS 7.13.0.10 must upgrade to DDOS 7.13.0.20 

Q: If I have any questions or problems with upgrading to the new versions, whom should I contact?
A: For Dell Technical Support or upgrades, use the following links:

• Product Support
• Dell Data Security International Support Phone Numbers