DSA-2024-367: Security Update for Dell NetWorker Runtime Environment(NRE) Security Vulnerabilities
Summary: Dell NetWorker Runtime Environment remediation is available for Java SE Embedded security vulnerabilities that could be exploited by malicious users to compromise the affected system.
This article applies to
This article does not apply to
Impact
High
Details
| Third-party Component | CVEs | More Information |
|---|---|---|
| Java SE Embedded | CVE-2024-27983, CVE-2024-21147, CVE-2024-21145, CVE-2024-21140, CVE-2024-21144, CVE-2024-21131, CVE-2024-21138 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/  |
Affected Products & Remediation
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell NetWorker Runtime Environment (NRE) | NRE | Version 8.0.21 | Version 8.0.22 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell NetWorker Runtime Environment (NRE) | NRE | Version 8.0.21 | Version 8.0.22 or later | https://www.dell.com/support/home/product-support/product/networker/drivers |
The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
- Platforms: Windows & Linux (All variants and flavors are impacted)
- Unless specified as impacted, the term “later releases” encompasses all NRE releases, under standard support, that are of a higher minor or major version than the specified release.
- Dell advises that you consistently upgrade to the most recent release/version of your product.
Revision History
| Revision | Date | Description |
| 1.0 | 2024-08-22 | Initial Release |