Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

DSA-2022-213: Dell Data Protection Search Security Update for Multiple Third-Party Vulnerabilities

Summary: Dell Data Protection Search remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

This article applies to   This article does not apply to 
Check out resources for

Impact

High

Details

Third-party Component  CVEs More information
Oracle JRE CVE-2022-21449
CVE-2022-21476
CVE-2022-21426
CVE-2022-21496
CVE-2022-21434
CVE-2022-21443
https://www.oracle.com/security-alerts/cpuapr2022.html This hyperlink is taking you to a website outside of Dell Technologies.
#AppendixJAVA
OpenSSL CVE-2022-0778 https://www.suse.com/support/update/announcement/2022/suse-su-20220857-1/ This hyperlink is taking you to a website outside of Dell Technologies.
Apache Log4j  CVE-2021-44228 
CVE-2021-45046
CVE-2021-45105
CVE-2021-44832		 Apache Log4j Remote Code Execution This hyperlink is taking you to a website outside of Dell Technologies. 
Third-party Component  CVEs More information
Oracle JRE CVE-2022-21449
CVE-2022-21476
CVE-2022-21426
CVE-2022-21496
CVE-2022-21434
CVE-2022-21443
https://www.oracle.com/security-alerts/cpuapr2022.html This hyperlink is taking you to a website outside of Dell Technologies.
#AppendixJAVA
OpenSSL CVE-2022-0778 https://www.suse.com/support/update/announcement/2022/suse-su-20220857-1/ This hyperlink is taking you to a website outside of Dell Technologies.
Apache Log4j  CVE-2021-44228 
CVE-2021-45046
CVE-2021-45105
CVE-2021-44832		 Apache Log4j Remote Code Execution This hyperlink is taking you to a website outside of Dell Technologies. 
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Affected Versions Updated Versions Link to Update
Dell Data Protection Search 19.3.0
19.4.0
19.5.0
19.5.1		 19.6.1 https://dl.dell.com/downloads/DLD2447_Search-19.6.1-upgrade-package.zip
 
Dell Integrated Data Protection Appliance
Dell PowerProtect Data Protection Appliance		 2.7.2 and earlier 2.7.2 with DP Search 19.6.1 patch
 
NOTE: Integration Data Protection Appliance customers with version 2.7.1 and earlier versions should upgrade to Integration Data Protection Appliance 2.7.2 first before applying the Dell Data Protection Search patch referenced above.
Product Affected Versions Updated Versions Link to Update
Dell Data Protection Search 19.3.0
19.4.0
19.5.0
19.5.1		 19.6.1 https://dl.dell.com/downloads/DLD2447_Search-19.6.1-upgrade-package.zip
 
Dell Integrated Data Protection Appliance
Dell PowerProtect Data Protection Appliance		 2.7.2 and earlier 2.7.2 with DP Search 19.6.1 patch
 
NOTE: Integration Data Protection Appliance customers with version 2.7.1 and earlier versions should upgrade to Integration Data Protection Appliance 2.7.2 first before applying the Dell Data Protection Search patch referenced above.

Revision History

RevisionDateDescription 
1.02022-07-28Initial Release 
1.12022-10-20Minor Change in Affected Version and Updated Version 
1.22022-11-03Minor Change in Updated Version 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Data Protection Search, PowerProtect Data Protection Appliance, Data Protection Search, PowerProtect Data Protection Software, Integrated Data Protection Appliance Family, PowerProtect Data Protection Hardware , Integrated Data Protection Appliance Software, Product Security Information ...