Ana içeriğe atla
  • Hızla ve kolayca sipariş verin
  • Siparişleri görüntüleyin ve kargonuzun durumunu izleyin
  • Ürünlerinizin listesini oluşturun ve listeye erişin
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.

Article Number: 000201622


DSA-2022-167: Dell Connectrix Security Update for Multiple Vulnerabilities

Summary: Dell Connectrix (Cisco) remediation is available for multiple Spring vulnerabilities that may be exploited by malicious users to compromise the affected system.

Article Content


Impact

Critical

Details

 Third-party Component CVEs More information
Spring Cloud Function CVE-2022-22963 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2022-22963 | Security | VMware Tanzu
Spring MVC or Spring WebFlux application CVE-2022-22965 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2022-22965 | Security | VMware Tanzu
 Third-party Component CVEs More information
Spring Cloud Function CVE-2022-22963 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2022-22963 | Security | VMware Tanzu
Spring MVC or Spring WebFlux application CVE-2022-22965 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2022-22965 | Security | VMware Tanzu

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-22963 Connectrix (Cisco) DCNM and NDFC
 
DCNM versions before 11.5(4) and NDFC versions before 12.0(2f)
 
NDFC 12.1(1e) Support for Connectrix | Drivers & Downloads | Dell US
CVE-2022-22965
CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-22963 Connectrix (Cisco) DCNM and NDFC
 
DCNM versions before 11.5(4) and NDFC versions before 12.0(2f)
 
NDFC 12.1(1e) Support for Connectrix | Drivers & Downloads | Dell US
CVE-2022-22965
Revision History

RevisionDateDescription
1.02022-07-19Initial Release

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


Article Properties


Affected Product

Connectrix MDS-Series

Product

Product Security Information

Last Published Date

19 Tem 2022

Version

1

Article Type

Dell Security Advisory