DSA-2019-080: Dell SupportAssist Enterprise Security Update for Eclipse Jetty Server Vulnerability

Summary: Dell SupportAssist Enterprise has been updated to address a security vulnerability in the Eclipse Jetty Server component.

Bu makale şunlar için geçerlidir: Bu makale şunlar için geçerli değildir: Bu makale, belirli bir ürüne bağlı değildir. Bu makalede tüm ürün sürümleri tanımlanmamıştır.
Diğer kaynaklara göz atın

Impact

Critical

Details

The Eclipse Jetty Server component in Dell SupportAssist Enterprise has been updated for the following vulnerability:

  • CVE-2017-7658

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

The Eclipse Jetty Server component in Dell SupportAssist Enterprise has been updated for the following vulnerability:

  • CVE-2017-7658

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Etkilenen Ürünler ve Düzeltme

Affected Products:
Dell SupportAssist Enterprise version 2.0.20 and prior versions

Remediation:

The following Dell SupportAssist Enterprise release contains a resolution to this vulnerability:

  • Dell SupportAssist Enterprise version 2.0.21

Dell Technologies recommends all customers update at the earliest opportunity.

Method 1: Auto Update

Dell SupportAssist Enterprise automatically upgrades to the latest version available, if automatic updates are enabled.

Method 2: Manual Update

To update manually, download and install the latest product version for:

SupportAssist Enterprise Windows management server 

SupportAssist Enterprise Linux management server

Go to Dell Drivers & Downloads for updates on the applicable products.

Customers may use one of the Dell Notification Solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

 

Affected Products:
Dell SupportAssist Enterprise version 2.0.20 and prior versions

Remediation:

The following Dell SupportAssist Enterprise release contains a resolution to this vulnerability:

  • Dell SupportAssist Enterprise version 2.0.21

Dell Technologies recommends all customers update at the earliest opportunity.

Method 1: Auto Update

Dell SupportAssist Enterprise automatically upgrades to the latest version available, if automatic updates are enabled.

Method 2: Manual Update

To update manually, download and install the latest product version for:

SupportAssist Enterprise Windows management server 

SupportAssist Enterprise Linux management server

Go to Dell Drivers & Downloads for updates on the applicable products.

Customers may use one of the Dell Notification Solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Yasal Uyarı

Etkilenen Ürünler

SupportAssist Enterprise 1.x, SupportAssist Enterprise Application 2.x
Makale Özellikleri
Article Number: 000177817
Article Type: Dell Security Advisory
Son Değiştirme: 22 Tem 2025
Sorularınıza diğer Dell kullanıcılarından yanıtlar bulun
Destek Hizmetleri
Aygıtınızın Destek Hizmetleri kapsamında olup olmadığını kontrol edin.