Ref# ADV2022_129 | Date: May 16th 2022

---

Dell published a security advisory highlighting vulnerabilities in the following products on the 11th of May 2022. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• Dell EMC AppSync version 4.4.0.0 

• Dell Unity Operating Environment (OE) versions prior to 5.2.0.0.5.173 

• Dell UnityVSA Operating Environment (OE) versions prior to 5.2.0.0.5.173 

• Dell Unity XT Operating Environment (OE) versions prior to 5.2.0.0.5.173 

For more information on these updates, you can follow these URLs: 

https://www.dell.com/support/kbdoc/en-gy/000199446/dsa-2022-138-dell-unity-dell-unityvsa-and-dell-unity-xt-security-update-for-cross-site-scripting-vulnerability  

https://www.dell.com/support/kbdoc/en-gy/000199436/dsa-2022-131-dell-emc-appsync-security-update-for-multiple-vulnerabilities-in-embedded-service-enabler-ese-component-of-appsync  
 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

PDF Download: ADV2022_129 Dell Security Advisory.pdf

References 

• Dell Security Advisory (13th May 2022). Retrieved from Canadian Centre for Cyber Security. 
  https://cyber.gc.ca/en/alerts/dell-security-advisory-av22-275    

• Dell Security Advisory (11th May 2022). Retrieved from Dell. 
  https://www.dell.com/support/security/en-ca