Dell Product Security Update Advisory

Nov 27 2024

Overview

An update has been released to address vulnerabilities in Dell Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-49595, CVE-2024-49597

Dell Wyse Management Suite versions: ~ 4.4 (inclusive)

Resolved Vulnerabilities

Authentication Bypass via Capture-replay Vulnerability in Dell Wyse Management Suite (CVE-2024-49595)

Improper limitation of excessive authentication attempts in Dell Wyse Management Suite (CVE-2024-49597)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-49595, CVE-2024-49597

Dell Wyse Management Suite version: 4.4.1 or later version

Referenced Sites

[1] CVE-2024-52899 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-52899

[2] Security Bulletin: IBM Data Virtualization Manager for z/OS has a remote code execution (RCE) vulnerability

https://www.ibm.com/support/pages/node/7177091

[3] CVE-2024-49353 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-49353

[4] Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a possible race condition [CVE-2024-49353]

https://www.ibm.com/support/pages/node/7177065

Dell Product Security Update Advisory

7-Zip Security Update Advisory (CVE-2024-11477)

UpKeeper Product Security Update Advisory

Tags:

7-Zip Security Update Advisory (CVE-2024-11477)

UpKeeper Product Security Update Advisory