DSA-2021-300: vRealize Orchestrator (vRO) Plug-ins for Dell EMC Storage Security Updates for Apache Log4j Remote Code Execution Vulnerability
Summary: vRealize Orchestrator (vRO) Plug-ins for Dell EMC Storage is available for the Apache Log4j Remote Code Execution Vulnerability that may be exploited by malicious users to compromise the affected system. Dell recommends implementing this remediation as soon as possible in light of the critical severity of the vulnerability. ...
Bu makale şunlar için geçerlidir:
Bu makale şunlar için geçerli değildir:
Bu makale, belirli bir ürüne bağlı değildir.
Bu makalede tüm ürün sürümleri tanımlanmamıştır.
Impact
Critical
Details
|
Third-party Component |
CVE |
More information |
|
Apache Log4j |
CVE-2021-44228, CVE-2021-45046 |
|
Third-party Component |
CVE |
More information |
|
Apache Log4j |
CVE-2021-44228, CVE-2021-45046 |
Etkilenen Ürünler ve Düzeltme
| Product | Affected Versions | Updated Versions | Link to Update |
| vRO Plugin for Dell EMC PowerMax | Version 1.2.3 or earlier | 1.2.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.1.0 or earlier | 1.1.1 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.0.3, 1.0.2, 1.0.1, and 1.0.0 | 1.0.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
Note:
Customers using vRO Plugin for Dell EMC PowerStore 1.1.4 (or earlier), Unity 1.0.7 (or earlier and XtremIO 4.1.2 (or earlier) only need to apply the vRO mitigation, detailed in the Workaround and Mitigation section.
| Product | Affected Versions | Updated Versions | Link to Update |
| vRO Plugin for Dell EMC PowerMax | Version 1.2.3 or earlier | 1.2.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.1.0 or earlier | 1.1.1 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
| vRO Plugin for Dell EMC PowerScale | Version 1.0.3, 1.0.2, 1.0.1, and 1.0.0 | 1.0.4 | Support for vRealize Orchestrator (vRO) Platforms | Drivers & Downloads | Dell US |
Note:
Customers using vRO Plugin for Dell EMC PowerStore 1.1.4 (or earlier), Unity 1.0.7 (or earlier and XtremIO 4.1.2 (or earlier) only need to apply the vRO mitigation, detailed in the Workaround and Mitigation section.
Geçici Çözümler ve Risk Azaltma
Mitigation applicable to vRO Plugin for Dell EMC PowerMax, vRO Plugin for Dell EMC PowerScale, vRO Plugin for Dell EMC PowerStore, vRO Plugin for Dell EMC Unity, and vRO Plugin for Dell EMC XtremIO:
VMware has announced two KB articles to mitigate this vulnerability for VMware vRealize Orchestrator (vRO):
Revision History
|
Related Information
Yasal Uyarı
Etkilenen Ürünler
Product Security Information, vRealize Orchestrator (vRO) Plug-in for PowerMax, vRealize Orchestrator (vRO) Plug-in for PowerScaleÜrünler
vRealize Orchestrator (vRO) Plug-in for PowerStore, vRealize Orchestrator (vRO) Plug-in for Unity, vRealize Orchestrator (vRO) Plug-in for XtremIOMakale Özellikleri
Article Number: 000194610
Article Type: Dell Security Advisory
Son Değiştirme: 05 Kas 2025
Sorularınıza diğer Dell kullanıcılarından yanıtlar bulun
Destek Hizmetleri
Aygıtınızın Destek Hizmetleri kapsamında olup olmadığını kontrol edin.