DSA-2023-384: Security Update for Dell Precision Rack Multiple Tianocore EDK2 Vulnerabilities

Riepilogo: Dell Precision Rack remediation is available for multiple Tianocore EDK2 vulnerabilities that could be exploited by malicious users to compromise the affected system.

Questo articolo si applica a Questo articolo non si applica a Questo articolo non è legato a un prodotto specifico. Non tutte le versioni del prodotto sono identificate in questo articolo.

Impatto

High

Ulteriori dettagli

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Dettagli

Third-Party Component CVE(s) More information
Tianocore EDK2 CVE-2023-45229, CVE-2023-45230, CVE-2023-45231, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235, CVE-2023-45236, CVE-2023-45237 See NVD (https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) or the following advisories for individual scores for each CVE

Dell Technologies raccomanda a tutti i clienti di prendere in considerazione sia il punteggio base CVSS, sia ogni eventuale punteggio temporale o ambientale che possa avere effetti sul livello di gravità potenziale associato a una specifica vulnerabilità di sicurezza.

Prodotti interessati e correzione

Product Software/Firmware Affected Versions Remediated Versions BIOS Release Date Link
Precision 7920 Rack BIOS Versions prior to 2.20.1 Version 2.20.1 or later 11/30/2023 Go to the Drivers & Downloads site for updates.
7920 XL Rack BIOS Versions prior to 2.20.1 Version 2.20.1 or later 11/30/2023 Go to the Drivers & Downloads site for updates.
Precision 7910 Rack BIOS Versions prior to 2.18.0 Version 2.18.0 or later 12/6/2023 Go to the Drivers & Downloads site for updates.
Precision 7910 XL Rack BIOS Versions prior to 2.18.0 Version 2.18.0 or later 12/6/2023 Go to the Drivers & Downloads site for updates.
 Precision 7960 Rack BIOS Versions prior to 2.0.0 Version BIOS 2.0.0 or later 01/23/2024 Go to the Drivers & Downloads site for updates.
Precision 7960 XL Rack BIOS Versions prior to 2.0.0 Version BIOS 2.0.0 or later 01/23/2024 Go to the Drivers & Downloads site for updates.
Product Software/Firmware Affected Versions Remediated Versions BIOS Release Date Link
Precision 7920 Rack BIOS Versions prior to 2.20.1 Version 2.20.1 or later 11/30/2023 Go to the Drivers & Downloads site for updates.
7920 XL Rack BIOS Versions prior to 2.20.1 Version 2.20.1 or later 11/30/2023 Go to the Drivers & Downloads site for updates.
Precision 7910 Rack BIOS Versions prior to 2.18.0 Version 2.18.0 or later 12/6/2023 Go to the Drivers & Downloads site for updates.
Precision 7910 XL Rack BIOS Versions prior to 2.18.0 Version 2.18.0 or later 12/6/2023 Go to the Drivers & Downloads site for updates.
 Precision 7960 Rack BIOS Versions prior to 2.0.0 Version BIOS 2.0.0 or later 01/23/2024 Go to the Drivers & Downloads site for updates.
Precision 7960 XL Rack BIOS Versions prior to 2.0.0 Version BIOS 2.0.0 or later 01/23/2024 Go to the Drivers & Downloads site for updates.

Cronologia delle revisioni

RevisionDateDescription
1.02023-01-16Initial Release
2.02024-01-23Updated Affected Products and Remediation section: Final Platform list update

Informazioni correlate

Prodotti interessati

R7910 XL, 7920 XL Rack, Precision 7960 XL Rack, Precision 7920 Rack, Precision Rack 7910, Precision 7960 Rack
Proprietà dell'articolo
Numero articolo: 000218418
Tipo di articolo: Dell Security Advisory
Ultima modifica: 23 gen 2024
Trova risposta alle tue domande dagli altri utenti Dell
Support Services
Verifica che il dispositivo sia coperto dai Servizi di supporto.