Article Number: 000223545
DSA-2024-135: Security Update for Dell PowerProtect Cyber Recovery for Third-Party Vulnerabilties
Summary: Dell PowerProtect Cyber Recovery remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Article Content
Impact
Critical
Details
| Third-party components | CVEs | More Information |
|---|---|---|
| libvmtools0=12.3.5-4.68.8 open-vm-tools=12.3.5-4.68.8 |
CVE-2023-34058, CVE-2023-34059 | See NVD link below for individual scores for each CVE https://nvd.nist.gov  |
| vim-data-common=9.0.2103-17.26.1 vim-data=9.0.2103-17.26.1 vim=9.0.2103-17.26.1 |
CVE-2023-46246, CVE-2023-5344, CVE-2023-5441, CVE-2023-5535 | See NVD link below for individual scores for each CVE https://nvd.nist.gov |
Affected Products and Remediation
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| PowerProtect Cyber Recovery | 19.15.0.1 and prior | 19.16.0.1 and later | Apply latest Cyber Recovery OS update package |
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| PowerProtect Cyber Recovery | 19.15.0.1 and prior | 19.16.0.1 and later | Apply latest Cyber Recovery OS update package |
For more updates, please refer: Dell PowerProtect Cyber Recovery Version 19.16 OS Update Release Notes
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-03-27 | Initial Release |
| 2.0 | 2024-05-06 | Updated Additional Information section with release notes link. |
Related Information
Legal Information
Article Properties
Affected Product
PowerProtect Cyber Recovery
Last Published Date
07 May 2024
Article Type
Dell Security Advisory