Several Vulnerabilities in Dell EMC Data Protection Suite Family
Identified by Digital Defense
This is a Press Release edited by StorageNewsletter.com on January 25, 2018 at 1:16 pmOn January 4, 2018 Digital Defense is disclosing three vulnerabilities identified on Dell EMC Data Protection Suite Family products discovered by the Digital Defense Vulnerability Research Team (VRT).
VRT would like to commend Dell EMC for their prompt handling and diligent attention to the issues and their work with Digital Defense engineering staff to understand, resolve and verify the fixes for these security issues.
Dell EMC Avamar Server, NetWorker Virtual Edition and Integrated Data Protection Appliance contain a common component, Avamar Installation Manager (AVI), which is vulnerable to the disclosed vulnerabilities. Dell EMC has released security fixes to address these vulnerabilities. The security fixes can be obtained through security advisory ESA-2018-001(requires Dell EMC Online Support credentials).
More details on Dell EMC Vulnerability Response Policy
Clients who currently use Digital Defense’s Frontline Vulnerability Manager platform can sweep for the presence of this issue by performing a full vulnerability assessment scan.
Details of the vulnerabilities are as follows:
- Vendor: Dell EMC
- Products:
• Avamar Server 7.1.x, 7.2.x, 7.3.x, 7.4. x, 7.5.0
• NetWorker Virtual Edition 0.x, 9.1.x, 9.2.x
• Integrated Data Protection Appliance 2.0
Subscribe to our free daily newsletter
