Skip to main content

Solved!

Go to Solution

Closed

dereks

1 Rookie

 • 

20 Posts

1060

June 10th, 2023 03:00

Optiplex 7090 BIOS Update DSA-2023-113

Viewing this page https://www.dell.com/support/home/en-us/drivers/driversdetails?driverid=c6gvn&oscode=wt64a&productcode=optiplex-7090-desktop

 

DSA-2023-113 is referenced with a link to Dell Security Advisories and Notices https://www.dell.com/support/security/en-us

However, DSA-2023-113 is no where to be found on that page.  Where can I find details about DSA-2023-113?

C.Ram

2 Posts

June 20th, 2023 07:00

I did some digging as I was curious. Typically I have found no details to mean it's not important or they are hiding something. In this case, it may be a a little bit of both in my opinion. Here is the DAS-2023-113 link i located: https://www.dell.com/support/kbdoc/en-id/000207439/dsa-2023-013-dell-client-security-update-for-a-bios-vulnerability 

It references theses site: (https://nvd.nist.gov/) and (https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00088.html) for Intel CVE-2017-5717 that has a "medium" impact level. Funny enough Dell has it labeled as Critical though. I wonder why that is (slipped through the cracks possibly or other. LOL.

bradthetechnut

7 Technologist

 • 

9.2K Posts

June 13th, 2023 16:00

Good question.  I didn't look thru all 49 pages, but used "DSA-2023-113" for a search term and got nothing.  Have you tried the chat button on the lower-right of the screen?

dereks

1 Rookie

 • 

20 Posts

June 16th, 2023 02:00

No. I would expect them to read this and reply here. 

vit09

2 Posts

June 16th, 2023 04:00

Dell has stated that they will not be re-issuing the DSA-2023-113 advisory. If you have any questions about the vulnerability or the patch, you can contact Dell Technical Support.

C.Ram

2 Posts

June 20th, 2023 06:00

Hmm, That's odd they wont be re-issuing the DSA-2023-113 advisory when my Monthly Schedule Dell Command Update ran and found it in the latest BIOS for Lat 5520 and Prec 3560
https://www.dell.com/support/home/en-us/drivers/driversdetails?driverid=crxr5&oscode=wt64a&productcode=latitude-15-5520-laptop 

Why would they pull the article that notes the CVE it's addressing. Are they (Dell) hiding something?

RoHe

10 Elder

 • 

45.2K Posts

June 20th, 2023 10:00

Unfortunately, lots of DSAs for Dell PC models never appear on that DSA page. 

It seems Dell marks labels every security (CVE) issue as "critical".

Don't know why Dell doesn't just post the CVE numbers and stop making us go to their useless DSA site. 

I have told this to Dell various different ways...

dereks

1 Rookie

 • 

20 Posts

June 20th, 2023 19:00

Thanks for the post.   No amount of Googling it found anything.  Good to know there's something about it... all be it the original specter meltdown.

Was this post helpful?

View All

Top