Dell Data Security Technical Newsletter 

Volume 75, June 2021 

Dell Data Security Chat

For U.S. customers only, Chat support is now available Monday through Friday, 7 a.m. to 7 p.m. CST.

Dell Data Security ProSupport for Software

24x7 support and issue resolution from a team of technicians.

Within the U.S., the dedicated number is 877.459.7304, X4310039.

For a list of in-country phone numbers, click here.

NEW: Dell Data Security Advanced Support for Software

Direct and easy access to your own dedicated security expert.

Support for all of your Dell endpoint security software.

Personalized support including customized communication plans, health checks and more!

For more information, click here or contact your account executive.

Netskope Version 86 Available

Netskope Version 86 is available, containing 19 new features and 12 fixes. Along with this month’s release, new SaaS Security Posture Management functionality is introduced for GitHub, Microsoft 365, and Salesforce. Contact Dell Support for information on how to enable the new Security Posture Management functionality in your environment. 

Netskope Version 86 Release Notes can be found here.

_____________________________________________

Netskope Secure Web Gateway

Netskope has updated Secure Web Gateway to allow for additional content filtering options, along with additional protections for most browsers that may be installed on endpoints. Additionally, more views and reports have been added to allow for tracking of data and ensuing the efficacy of Secure Web Gateway and Private Access from Netskope.

Check out What is Netskope Secure Web Gateway and see how this solution can help you meet regulatory compliance and enforce acceptable use in your environment.

If you are interested in an evaluation, please see How to Request a Dell Endpoint Security Evaluation.

_____________________________________________

Windows 10 Feature Updates

For the latest in with Windows, please see our Windows 10 Feature Updates KB article.

Vulnerability in Dell Security Management Server - DSA-2021-130

A vulnerability was identified within the Dell Security Management Server, specifically with the PostgreSQL version that is leveraged within the Windows version of the Dell Security Management Server.

A Dell Security Advisory has been published and is available for review.

What is the issue?

Dell Security Management Server 11.0.0.147 and earlier contain a version of PostgreSQL that contains multiple vulnerabilities that can lead to unprivileged code execution, along with sensitive information being in unprotected directories.

NOTE: Dell Security Management Server Virtual 10.2.13 and later are unaffected by this issue.

What is being done?

Dell has released the Dell Security Management Server 11.0.1.152 on support.dell.com, which is an in-place upgrade for 11.0.0.147 and earlier builds. This version contains an upgrade to 11.12-2, which resolves all currently known vulnerabilities.

This update can be found here.

Technical Advisories are currently being updated, and will be available here soon.

How can customers identify if they are affected?

On the Windows Server that hosts the Dell Security Management Server, the customer can look within Programs and Features, and inspect the “version” column for the installed server. This example shows a vulnerable version, 10.2.10:

The WebUI can also be leveraged to identify. Simply select the gear in the upper-right and select About.

This will show the version of the DSMS:

Dell is working on publicizing this information to ensure customers are aware of this issue and have access to the available updates.