DSA-2022-064: Dell EMC CloudLink Security Update for Security Vulnerabilities
Sammendrag: Dell EMC CloudLink remediation is available for security vulnerabilities that may potentially be exploited by malicious users to compromise the affected system.
Denne artikkelen gjelder for
Denne artikkelen gjelder ikke for
Denne artikkelen er ikke knyttet til noe bestemt produkt.
Det er ikke produktversjonene som identifiseres i denne artikkelen.
Påvirkning
High
Detaljer
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24414 | Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should not be used in request URL to avoid such attacks. | 7.6 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24414 | Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should not be used in request URL to avoid such attacks. | 7.6 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Berørte produkter og utbedring
| Product | Affected Versions | Updated Versions | Link to Update | |
| Dell EMC CloudLink | Versions before 7.1.3 | 7.1.3 | https://www.dell.com/support/home/en-us/product-support/product/cloudlink-securevm/drivers | |
| Product | Affected Versions | Updated Versions | Link to Update | |
| Dell EMC CloudLink | Versions before 7.1.3 | 7.1.3 | https://www.dell.com/support/home/en-us/product-support/product/cloudlink-securevm/drivers | |
Endringshistorikk
| Revision | Date | Description |
| 1.0 | 2022-03-16 | Initial Release |
Relatert informasjon
Juridisk ansvarsfraskrivelse
Berørte produkter
CloudLinkProdukter
Product Security InformationArtikkelegenskaper
Artikkelnummer: 000197425
Artikkeltype: Dell Security Advisory
Sist endret: 18 sep. 2025
Få svar på spørsmålene dine fra andre Dell-brukere
Støttetjenester
Sjekk om enheten din er dekket av støttetjenestene.