DSA-2022-200: Dell Cloud Tiering Appliance Security Update for Multiple Vulnerabilities
Summary: Dell Cloud Tiering Appliance contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.
This article applies to
This article does not apply to
Impact
High
Details
| Third-party Component | CVEs | More information |
| grub2 | CVE-2022-28736 | https://www.suse.com/security/cve/CVE-2022-28736.html  |
| CVE-2022-28734 | https://www.suse.com/security/cve/CVE-2022-28734.html |
|
| CVE-2022-28733 | https://www.suse.com/security/cve/CVE-2022-28733.html |
|
| CVE-2021-3697 | https://www.suse.com/security/cve/CVE-2021-3697.html |
|
| CVE-2021-3696 | https://www.suse.com/security/cve/CVE-2021-3696.html |
|
| CVE-2021-3695 | https://www.suse.com/security/cve/CVE-2021-3695.html |
| Third-party Component | CVEs | More information |
| grub2 | CVE-2022-28736 | https://www.suse.com/security/cve/CVE-2022-28736.html |
| CVE-2022-28734 | https://www.suse.com/security/cve/CVE-2022-28734.html |
|
| CVE-2022-28733 | https://www.suse.com/security/cve/CVE-2022-28733.html |
|
| CVE-2021-3697 | https://www.suse.com/security/cve/CVE-2021-3697.html |
|
| CVE-2021-3696 | https://www.suse.com/security/cve/CVE-2021-3696.html |
|
| CVE-2021-3695 | https://www.suse.com/security/cve/CVE-2021-3695.html |
Affected Products & Remediation
| CVEs Addressed | Product | Affected Versions | Updated Versions | Link to Update |
| CVE-2022-28736 CVE-2022-28734 CVE-2022-28733 CVE-2021-3697 CVE-2021-3696 CVE-2021-3695 |
Cloud Tiering Appliance | All versions of CTA 13.0 and 13.1 | 13.0.0.2.33 and 13.1.0.2.25 |
For CTA and CTA-HA: https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-appliance/drivers For CTA-VE and CTA-HA VE: https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-applianceve/drivers |
| CVEs Addressed | Product | Affected Versions | Updated Versions | Link to Update |
| CVE-2022-28736 CVE-2022-28734 CVE-2022-28733 CVE-2021-3697 CVE-2021-3696 CVE-2021-3695 |
Cloud Tiering Appliance | All versions of CTA 13.0 and 13.1 | 13.0.0.2.33 and 13.1.0.2.25 |
For CTA and CTA-HA: https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-appliance/drivers For CTA-VE and CTA-HA VE: https://www.dell.com/support/home/en-in/product-support/product/cloud-tiering-applianceve/drivers |
Revision History
| Revision | Date | Description |
| 1.0 | 2022-07-25 | Initial Release |