DSA-2025-072: Security Update for Dell PowerScale OneFS for Multiple Security Vulnerabilities
Résumé: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Cet article concerne
Cet article ne concerne pas
Cet article n’est associé à aucun produit spécifique.
Toutes les versions du produit ne sont pas identifiées dans cet article.
Impact
High
Détails
|
Third-Party Component |
CVEs |
More information |
|---|---|---|
|
BIOS |
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985 |
|
| iDRAC | CVE-2023-52340, CVE-2024-42154 |
Produits concernés et mesure corrective
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F210 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F710 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F910 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F210 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F710 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F910 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
Note:
- We encourage all customers to upgrade to the remediated versions, if an upgrade is not feasible, we recommend customers to review the CVE details further to more accurately determine potential risk to their environment.
- To identify which nodes require upgrading, please refer to the firmware assessment report. For instructions on completing the assessment and report, please refer to the "Run a firmware assessment" section in PowerScale Node Firmware Package 12.4.2 Release Notes documented in Firmware - PowerScale Info Hub.
- Due to the NFP installation issue with parallel upgrade, customers are advised not to perform parallel upgrades when upgrading from PowerScale OneFS versions lower than: 9.4.0.19, 9.5.1.0, 9.7.1.0, 9.8.0.1, 9.9.0.0.
Historique des révisions
|
Revision |
Date |
Description |
|---|---|---|
|
1.0 |
2025-02-11 |
Initial Release |
|
2.0 |
2025-07-23 |
Updated for enhance presentation |
Informations connexes
Mention légale
Produits concernés
PowerScale F210, PowerScale F710, PowerScale F910Propriétés de l’article
Numéro d’article: 000283880
Type d’article: Dell Security Advisory
Dernière modification: 23 juil. 2025
Trouvez des réponses à vos questions auprès d’autres utilisateurs Dell
Services de support
Vérifiez si votre appareil est couvert par les services de support.