Dell (Dell PowerProtect Data Manager) Products February 2024 Secondary Security Update Advisory

Feb 14 2024

Overview

Dell(https://www.dell.com) has released a security update that fixes vulnerabilities in products. Users of affected products are advised to update to the latest version.

Affected Products

Dell Power Protect Data Manager 19.15 and earlier versions

Resolved Vulnerabilities

Vulnerability due to a weak password recovery mechanism for forgotten passwords in Dell PowerProtect Data Manager (CVE-2024-22454, CVSS 8.8) [1]

Arbitrary OS command execution vulnerability due to OS command injection in Dell PowerProtect Data Manager (CVE-2024-22445, CVSS 7.2) [1]

Vulnerability Patches

Product-specific vulnerability patches were made available in the 02/13/2024 update. For more information on vulnerability patches, please refer to the “Affected Products and Remediation” section of the product-specific reference site documentation.

Dell Power Protect Data Manager 19.15. Build 025 and later

Referenced Sites

[1] DSA-2024-061: Dell Power Protect Data Manager Update for Multiple Security Vulnerabilities

Https://www.dell.com/support/kbdoc/en-us/000222025/dsa-2024-061-dell-power-protect-data-manager-update-for-multiple-security-vulnerabilities

Dell (Dell PowerProtect Data Manager) Products February 2024 Secondary Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

VMware Family February 2024 Round 1 Security Update Advisory

Atlassian Family January 2024 Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

VMware Family February 2024 Round 1 Security Update Advisory

Atlassian Family January 2024 Security Update Advisory