Multiple Critical Vulnerabilities Affecting Multiple Dell Products

Imechapishwa: Nov 08, 2024 22:41

Advisory No: TZCERT-SA-24-0040

Source: Dell

Software Affected: Dell metro node, Dell Enterprise SONiC Distribution, Dell VxRail Appliance

Overview

Dell products are vulnerable to multiple critical vulnerabilities. Exploitation of these vulnerabilities may allow attackers to compromise the affected system.

Description

Multiple components running on Dell metro node, Dell Enterprise SONiC Distribution, Dell VxRail Appliance are vulnerable to critical vulnerabilities. The vulnerabilities in these components may be exploited by the attackers to execute arbitrary code on affected devices.

Impact

Successful exploitation of these vulnerabilities may allow the attackers to take control of the affected system.

Solution

Dell has released security patches for these vulnerabilities. Users and administrators are encouraged to apply necessary updates.

References

1. https://www.dell.com/support/kbdoc/en-us/000244407/dsa-2024-432-security-update-for-dell-metro-node-for-multiple-third-party-component-vulnerabilities
2. https://www.dell.com/support/kbdoc/en-us/000245655/dsa-2024-449-security-update-for-dell-enterprise-sonic-distribution-vulnerabilities
3. https://www.dell.com/support/kbdoc/en-us/000245303/dsa-2024-430-security-update-for-dell-vxrail-7-0-532-multiple-third-party-component-vulnerabilities