DSA-2023-267: Security Update for Dell NetWorker vProxy gsoap vulnerabilities
摘要: Dell NetWorker vProxy remediation is available for gsoap that could be exploited by malicious users to compromise the affected system.
本文适用于
本文不适用于
本文并非针对某种特定的产品。
本文并非包含所有产品版本。
影响
Critical
详情
| Third-party Component | CVEs | More Information |
|---|---|---|
| gsoap | CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 |
See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ |
受影响的产品和补救措施
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions 19.9, 19.9.0.1 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions 19.8 through 19.8.0.2 | Version 19.8.0.3 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions 19.7 through 19.7.0.5 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Version 19.7.1 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions prior to 19.7 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions 19.9, 19.9.0.1 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions 19.8 through 19.8.0.2 | Version 19.8.0.3 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions 19.7 through 19.7.0.5 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Version 19.7.1 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
| CVE-2017-9765, CVE-2019-7659, CVE-2020-13576 | Dell NetWorker vProxy | vProxy | Versions prior to 19.7 | Version 19.9.0.2 vProxy OVA | https://www.dell.com/support/home/product-support/product/networker/drivers |
The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
- Platforms: Windows & Linux (All variants and flavors are impacted)
- Please refer to the installation version NetWorker 19.8.0.3 vProxy OVA under the Download list on Support Site with the Description as Linux SLES12 SP5 (64-bit). NetWorker vProxy virtual appliance. Version 4.3.0-47.ova
- Please refer to the installation version NetWorker 19.9.0.2 vProxy OVA under the Download list on Support Site with the Description as Linux SLES12 SP5 (64-bit). NetWorker vProxy virtual appliance. Version 4.3.0-49.ova
- Versions prior to 19.7 means versions 19.6.x, 19.5.x, 19.4.x family of releases that are still under standard support. For more information on Dell End-of-Life Documents for converged infrastructure, midrange and enterprise storage, and storage networking products kindly refer to: https://www.dell.com/support/kbdoc/000185734/all-dell-emc-end-of-life-documents?lang=en
- Dell recommends that you always upgrade to the latest release/version for your product
修订历史记录
| Revision | Date | Description |
| 1.0 | 2023-09-08 | Initial Release |
| 2.0 | 2023-09-21 | Added Point 3 under "Additional Info" Section for NetWorker 19.8.0.3 vProxy OVA Version details |
| 3.0 | 2023-09-26 | Updated "Remediated Versions" column under "Affected Products and Remediation" section as per the latest Version Release (NetWorker 19.9.0.2 vProxy OVA). |
| 4.0 | 2023-09-26 | Added Points 2 and 3 under "Additional Info" Section as per the latest Version Releases. |
| 5.0 | 2023-09-27 | Added Point 5 Under "Additional Info" Section |
相关信息
法律免责声明
受影响的产品
NetWorker Family, NetWorker, NetWorker Series, NetWorker Module, Product Security Information文章属性
文章编号: 000217446
文章类型: Dell Security Advisory
上次修改时间: 09 9月 2025
从其他戴尔用户那里查找问题的答案
支持服务
检查您的设备是否在支持服务涵盖的范围内。