DSA-2025-187: Security Update for Dell NetWorker vProxy Multiple Third-Party Component Vulnerabilities

详细文章

影响

受影响的产品和补救措施

修订历史记录

摘要: Dell NetWorker vProxy remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

本文适用于本文不适用于本文并非针对某种特定的产品。本文并非包含所有产品版本。

High

Third-party Component	CVEs	More Information
cURL	CVE-2023-46218, CVE-2023-46219, CVE-2024-9681	https://nvd.nist.gov/vuln/search
libexpat	CVE-2023-52425, CVE-2023-52426	https://nvd.nist.gov/vuln/search
Linux kernel	CVE-2024-8805	https://nvd.nist.gov/vuln/search
OpenSSL	CVE-2023-5678, CVE-2023-6129, CVE-2024-0727	https://nvd.nist.gov/vuln/search

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数，这可能会影响与特定安全漏洞相关的潜在严重程度。

Notes:

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
Platforms: Windows & Linux (All variants and flavors are impacted)
Versions prior to 19.11.0.5 means versions 19.11.0.4, 19.11.x, 19.10.x, 19.9.x, 19.8.x, 19.7.x, 19.6.x, 19.5.x, 19.4.x family of releases that are still under standard support. For more information on Dell End-of-Life Documents for converged infrastructure, midrange and enterprise storage, and storage networking products kindly refer to Dell End-of-Life Product List for Converged Infrastructure and Storage .
Unless specified as impacted, the term “later releases” encompasses all NetWorker releases, under standard support, that are of a higher minor or major version than the specified release. Dell recommends that you always upgrade to the latest release/version for your product.

Revision	Date	Description
1.0	2025-04-18	Initial Release
2.0	2025-05-26	Minor Updates related to 19.11.0.5 release and other formatting updates, no content changes.
3.0	2025-10-23	Minor formatting changes

NetWorker Family, NetWorker

文章编号: 000309762

文章类型: Dell Security Advisory

上次修改时间: 23 10月 2025