DSA-2019-120: Dell EMC Data Protection Central Security Update for Multiple Third-Party Component Vulnerabilities


alert-notice

Critical

第一次發布日期: 18 9月 2019
上次更新日期:   17 9月 2020

概覽

嚴重性等級 (CVSS 基本分數)

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

Summary:      
Multiple components within Dell EMC Data Protection Central require a security update to address various vulnerabilities.

詳細資料

Dell EMC creates and distributes the Data Protection Central OS Update. These DPC OS Updates contain security patches from third party components for the Data Protection Central system. See Data Protection Central OS Update Release Notes for more information.

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

Filled_Alert_Notice_Symbol   嚴重性免責聲明

若要查看嚴重性評分說明,請參閱 Dell EMC 知識庫文章 468307。Dell EMC 建議所有客戶不僅要參考基本分數,也要將任何可能影響與特定安全漏洞相關的潛在嚴重性的相關暫時和環境分數納入考量。

建議

Affected products:      
Dell EMC Data Protection Central versions 1.0.0, 1.0.1, 18.1, 18.2, 19.1
Dell EMC IDPA System Manager version 18.1, 18.2


Remediation:
Apply the Data Protection Central OS Update to all Data Protection Central systems installed via DPC OVA deployment; DPC systems installed without use of the DPC OVA are not updated by the DPC OS Update procedure.
To upgrade your Dell EMC Data Protection Central system, see KB article 522157: Data Protection Central: How to Install the Data Protection Central OS Update for installation instructions.  (Only registered Dell Customers can access the content on the article link via Dell.com/support)

Dell EMC recommends all customers upgrade at the earliest opportunity.

請閱讀並使用本 Dell EMC 安全公告中的資訊,協助避免本文所述問題可能會引發的狀況。如果您對此產品警示有任何疑問,請連絡 Dell EMC 軟體技術支援,電話是 1-877-534-2867。Dell EMC 分發 Dell EMC 安全公告,提供受影響的 Dell EMC 産品使用者注意重要的安全資訊。Dell EMC 建議所有使用者依自身個別情況判斷此資訊的適用性,並採取適當行動。此處列出的資訊「依現況」提供,不含任何形式的保固。Dell EMC 不提供任何明示或暗示的擔保,包括適銷性、特定用途的適用性、所有權和非侵權事宜。在任何情況下,Dell EMC 或其供應商均不須對任何損害承擔責任,包括直接、間接、意外、衍生性、商業利潤損失或特殊損害,即使 Dell EMC 或供應商已獲悉知可能發生此類損害亦然。某些州/省不允許衍生性或意外損壞的排除條款或責任限制,因此上述有限責任可能對您不適用。