DSA-2024-337: Security Update for Dell Virtual Storage Integrator for VMware vSphere Client for Third-Party Component Vulnerability
Summary: Dell Virtual Storage Integrator for VMware vSphere Client remediation is available for Third-Party Component Vulnerability that could be exploited by malicious users to compromise the affected system. ...
Impact
High
Details
| Third-party Component | CVEs | More Information |
|---|---|---|
| OpenSSH | CVE-2024-6387 | See NVD link below for individual scores for each CVE. |
Affected Products & Remediation
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| Dell Virtual Storage Integrator for VMware vSphere Client | Versions 9.1 through 10.6 | 10.7 or later | https://www.dell.com/support/home/en-us/product-support/product/vsi-for-vmware-vsphere-web-client/drivers |
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| Dell Virtual Storage Integrator for VMware vSphere Client | Versions 9.1 through 10.6 | 10.7 or later | https://www.dell.com/support/home/en-us/product-support/product/vsi-for-vmware-vsphere-web-client/drivers |
Workarounds & Mitigations
| CVE ID | Workaround and Mitigation |
|---|---|
| CVE-2024-6387 | Manually update Photon OS OpenSSH version with command “tdnf update openssh” on virtual machine of Dell Virtual Storage Integrator for VMware vSphere Client. |
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-08-12 | Initial Release |
Related Information
Legal Disclaimer
Affected Products
Virtual Storage Integrator (VSI)Article Properties
Article Number: 000227718
Article Type: Dell Security Advisory
Last Modified: 12 Aug 2024
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.
Article Properties
Article Number: 000227718
Article Type: Dell Security Advisory
Last Modified: 12 Aug 2024
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.