DSA-2021-287: Dell EMC SRS Policy Manager Security Update for Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105)
Сводка: Dell EMC SRS Policy Manager remediation is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...
Данная статья применяется к
Данная статья не применяется к
Эта статья не привязана к какому-либо конкретному продукту.
В этой статье указаны не все версии продуктов.
Влияние
Critical
Подробные сведения
| Third-party Component | CVEs | More information |
| Apache Log4j | CVE-2021-44228 | Apache Log4j Remote Code Execution |
| CVE-2021-45046 | ||
| CVE-2021-45105 |
| Third-party Component | CVEs | More information |
| Apache Log4j | CVE-2021-44228 | Apache Log4j Remote Code Execution |
| CVE-2021-45046 | ||
| CVE-2021-45105 |
Затронутые продукты и исправление
| Product | Affected Version | Updated Versions | Link to Update |
| SRS Policy Manager | 7.0 | 7.1 | https://www.dell.com/support/home/en-us/product-support/product/emc-secure-remote-services/drivers |
Note: Versions 6.6 and 6.8 are not impacted.
| Product | Affected Version | Updated Versions | Link to Update |
| SRS Policy Manager | 7.0 | 7.1 | https://www.dell.com/support/home/en-us/product-support/product/emc-secure-remote-services/drivers |
Note: Versions 6.6 and 6.8 are not impacted.
Временные решения и снижение риска
See KB article 194537: SRS Policy Manager 7.0 - remediation for Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105) (Acess to this article requires log in to Dell Support.)
История изменений
| Revision | Date | Description |
| 1.0 | 2021-12-15 | Initial Release |
| 1.1 | 2021-12-21 | Version Updated |
| 1.2 | 2022-02-02 | Added link to workaround at the request of Champion and Customer Support |
Связанная информация
Правовая оговорка
Затронутые продукты
EMC Secure Remote Services, Secure Remote Services, Secure Remote Services Virtual Edition, Product Security InformationСвойства статьи
Номер статьи: 000194544
Тип статьи: Dell Security Advisory
Последнее изменение: 02 Feb 2022
Получите ответы на свои вопросы от других пользователей Dell
Услуги технической поддержки
Проверьте, распространяются ли на ваше устройство услуги технической поддержки.