DSA-2020-235: Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

Denne artikel gælder for Denne artikel gælder ikke for Denne artikel er ikke knyttet til et bestemt produkt. Det er ikke alle produktversioner, der er identificeret i denne artikel.

Virkning

Critical

Oplysninger

Multiple components within Dell EMC VxRail Appliance require a security update to address various vulnerabilities.

Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Dell Technologies anbefaler, at alle kunder tager hensyn til både CVSS-basisresultatet og alle relevante tidsmæssige og miljømæssige resultater, som kan have betydning for den potentielle alvorsgrad, der er forbundet med en bestemt sikkerhedsrisiko.

Berørte produkter og udbedring

Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



Relaterede oplysninger

Berørte produkter

VxRail Software

Produkter

Product Security Information, VxRail Appliance Family, VxRail Appliance Series, VxRail Software
Artikelegenskaber
Artikelnummer: 000180948
Artikeltype: Dell Security Advisory
Senest ændret: 22 maj 2021
Find svar på dine spørgsmål fra andre Dell-brugere
Supportservices
Kontrollér, om din enhed er dækket af supportservices.