DSA-2022-103: Dell EMC NetWorker Security Update for Multiple Vulnerabilities
摘要: Dell EMC NetWorker remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. Only NetWorker Management Console Server and NetWorker Server components are impacted by these vulnerabilities. ...
本文适用于
本文不适用于
本文并非针对某种特定的产品。
本文并非包含所有产品版本。
影响
Critical
详情
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-29082 | Dell EMC NetWorker versions 19.1.x, 19.2.x, 19.3.x, 19.4.x, 19.5.x, 19.6, 19.6.0.1, 19.6.0.2, and 19.6.1 contain an Improper Validation of Certificate with Host Mismatch vulnerability in RabbitMQ port 5671 which may allow remote attackers to spoof certificates. | 3.7 | CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N |
| Third-Party Component | CVE | More Information |
| Apache HTTP | CVE-2022-22720 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-29082 | Dell EMC NetWorker versions 19.1.x, 19.2.x, 19.3.x, 19.4.x, 19.5.x, 19.6, 19.6.0.1, 19.6.0.2, and 19.6.1 contain an Improper Validation of Certificate with Host Mismatch vulnerability in RabbitMQ port 5671 which may allow remote attackers to spoof certificates. | 3.7 | CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N |
| Third-Party Component | CVE | More Information |
| Apache HTTP | CVE-2022-22720 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
受影响的产品和补救措施
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell EMC NetWorker | 19.1.x | 19.6.0.3, 19.5.0.7 |
https://www.dell.com/support/home/en-in/product-support/product/networker/drivers |
| 19.2.x | |||
| 19.3.x | |||
| 19.4.x | |||
| 19.5.x | |||
| 19.6 | |||
| 19.6.0.1 | |||
| 19.6.0.2 | |||
| 19.6.1 |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell EMC NetWorker | 19.1.x | 19.6.0.3, 19.5.0.7 |
https://www.dell.com/support/home/en-in/product-support/product/networker/drivers |
| 19.2.x | |||
| 19.3.x | |||
| 19.4.x | |||
| 19.5.x | |||
| 19.6 | |||
| 19.6.0.1 | |||
| 19.6.0.2 | |||
| 19.6.1 |
修订历史记录
| Revision | Date | Description |
| 1.0 | 2022-04-22 | Initial Release |
| 2.0 | 2022-05-31 | Added 19.5.0.7 as an Updated Version |
相关信息
法律免责声明
受影响的产品
NetWorker Family, NetWorker, Product Security Information文章属性
文章编号: 000198987
文章类型: Dell Security Advisory
上次修改时间: 31 5月 2022
从其他戴尔用户那里查找问题的答案
支持服务
检查您的设备是否在支持服务涵盖的范围内。