Dell Issues Security Advisories for PowerEdge, PowerProtect, Connectrix, and Networking Products
Dell released multiple security advisories covering vulnerabilities across a broad set of enterprise infrastructure products, and the Canadian Centre for Cyber Security urged organizations to review the notices and apply updates. The affected technologies span storage, networking, data protection, and server platforms, including Connectrix Switches and Directors, AMD-based PowerEdge Servers, Dell Command | Update versions prior to 5.7.0, PowerProtect Data Domain, and Dell Storage Manager - Replay Manager for Microsoft Servers versions prior to 8.0.3.
Additional advisories also affected Data Protection Advisor, Dell EMC Isilon OneFS, Dell EMC PowerScale, Dell Networking OS10, PowerProtect DP Series Appliance, Elastic Cloud Storage, ObjectScale, and several PowerSwitch models. The Canadian notice linked Dell advisories including DSA-2026-041, DSA-2026-171, DSA-2026-058, and DSA-2026-190, and characterized the activity as a vendor patch and mitigation effort rather than evidence of active exploitation.
Timeline
Apr 27, 2026
Canadian Centre for Cyber Security issues Dell advisory AV26-389
On 2026-04-27, the Canadian Centre for Cyber Security published advisory AV26-389 summarizing Dell advisories released between April 20 and 26, 2026 for Dell Networking OS10, Dell Storage Monitoring and Reporting, Dell Storage Resource Manager, and Dell VxRail Appliance. The advisory urged users and administrators to review Dell notices DSA-2026-160, DSA-2026-126, and DSA-2026-196 and apply the necessary updates.
Apr 20, 2026
Canadian Centre for Cyber Security issues Dell advisory AV26-366
On 2026-04-20, the Canadian Centre for Cyber Security published advisory AV26-366 referencing Dell advisories DSA-2026-041, DSA-2026-171, DSA-2026-058, and DSA-2026-190, and advised organizations to review and apply the relevant updates.
Apr 13, 2026
Dell publishes another round of security advisories
Between 2026-04-13 and 2026-04-19, Dell released additional advisories affecting Connectrix Switches and Directors, AMD-based PowerEdge Servers, Dell Command| Update versions prior to 5.7.0, PowerProtect Data Domain, and Dell Storage Manager - Replay Manager for Microsoft Servers versions prior to 8.0.3.
Apr 13, 2026
Canadian Centre for Cyber Security issues Dell advisory AV26-343
On 2026-04-13, the Canadian Centre for Cyber Security published advisory AV26-343 summarizing Dell's April 6-12 advisories and urging users and administrators to review the vendor notices and apply the necessary updates.
Apr 6, 2026
Dell publishes security advisories for multiple enterprise products
Between 2026-04-06 and 2026-04-12, Dell released a set of security advisories covering vulnerabilities in products including Connectrix Switches and Directors, Data Protection Advisor, Dell EMC Isilon OneFS, Dell EMC PowerScale, Dell Networking OS10, PowerProtect DP Series Appliance, Elastic Cloud Storage, ObjectScale, and several PowerSwitch models.
See the full picture in Mallory
Mallory subscribers get deeper analysis on every story, including:
Who’s affected and how
Deep-dive technical analysis
Actionable next steps for your team
IPs, domains, hashes, and more
Ask questions and take action on every story
Filter by topic, classification, timeframe
Get matching stories delivered automatically
Related Entities
Organizations
Sources
Related Stories
Dell Advisories Address Third-Party Component Flaws Across APEX, NetWorker, and Secure Connect Gateway
Dell issued multiple security advisories covering vulnerabilities across a broad set of enterprise products, including **APEX Cloud Platform for Red Hat OpenShift**, **APEX Cloud Platforms Solution Offerings**, **APEX**, **Dell Secure Connect Gateway Appliance**, **Dell Policy Manager for Secure Connect Gateway Appliance**, **Dell NetWorker**, **Dell Storage Monitoring and Reporting**, **Dell Storage Resource Manager**, and **Dell PowerSwitch Z9664F-ON**. The Canadian Centre for Cyber Security said the advisories span both Dell-developed software and bundled third-party components, with specific issues including **Apache Tomcat** vulnerabilities in NetWorker, **rsync** vulnerabilities in Dell networking products, and multiple third-party component flaws in Secure Connect Gateway-related offerings. Affected versions cited in the notices include Dell Policy Manager for Secure Connect Gateway Appliance before `5.32.00.18`, Dell Secure Connect Gateway Appliance before `5.34.00.16`, Dell NetWorker `19.14` and `19.9` through `19.13.0.2`, Dell PowerSwitch Z9664F-ON before `3.54.5.1-11`, and Dell Storage Monitoring and Reporting and Storage Resource Manager before `6.0.0.2`. The Cyber Centre urged organizations to review Dell’s product-specific advisories and apply the required updates to reduce exposure across infrastructure, storage, networking, and cloud platform environments.
1 months ago
Dell PowerProtect Data Domain OS and PowerDNS Flaws Prompt New dCERT Alerts
dCERT issued multiple advisories for **Dell PowerProtect Data Domain OS** and **PowerDNS**, highlighting newly tracked security flaws across both products. For Dell backup appliances, advisory `2026-1097` reported multiple vulnerabilities in PowerProtect Data Domain OS, followed by advisory `2026-1218`, which specifically warned that a vulnerability in the platform could allow **code execution**. dCERT also published two separate advisories on **PowerDNS**—`2026-1204` and `2026-1215`—each describing multiple vulnerabilities affecting the DNS software. The notices indicate a concentrated wave of disclosures affecting enterprise backup infrastructure and DNS services, with the Dell issue standing out because of its potential to let attackers execute code on vulnerable systems.
1 weeks ago
Multiple Security Advisories for Enterprise and Industrial Products (Late October–Early November 2025)
Vendors including Hitachi Energy, Schneider Electric, ABB, Ubiquiti, Dell, IBM, Red Hat, Ubuntu, and Microsoft released security advisories between October 27 and November 3, 2025, addressing vulnerabilities across a wide range of enterprise, industrial, and cloud products. Notable advisories include CISA's ICS alerts for control systems, a critical flaw in ABB's PCM600 software (CVE-2018-1002208), a critical vulnerability in Ubiquiti's UniFi Access Application (CVE-2025-52665), and updates for Microsoft Edge, Red Hat Enterprise Linux, Ubuntu LTS versions, and multiple Dell and IBM products. Organizations are urged to review the advisories, apply recommended mitigations, and update affected systems to reduce exposure to exploitation. The advisories highlight vulnerabilities that could allow remote code execution, privilege escalation, or unauthorized access if left unpatched. The Canadian Centre for Cyber Security and CISA emphasize the importance of timely patching and mitigation, especially for products deployed in critical infrastructure and enterprise environments. Administrators should consult the official vendor advisories for detailed remediation steps and monitor for further updates as new vulnerabilities are disclosed and addressed.
1 months ago