DXi Security Enhancement
Quantum has determined that a SQL injection attack may be possible prior to authentication.
Quantum recommends that you apply the appropriate code update linked below as soon as
possible and adhere to best practices for data storage product security.
If you are unable to apply the appropriate update at this time, Quantum recommends that you disable the DXi Administrative Activity Logging. Instructions to disable Activity Logging can be found in the DXi User Guide documentation.
DXi 4 series:
Update your DXi 4 series software to version V18.104.22.168 or later. This software is available on the links below and on Quantum’s YUM server.
DXi 3 series:
Update your DXi 3 series by applying a customer-installable patch available at the links below.
Vulnerable Quantum Products
• DXi 4 series products: 4801, 4800, 9000, 9100, V5000
• DXi 3 series products: 4700 and 6900, 6900S
• For legacy DXi products not listed here, contact Quantum Service