DSA-2026-127: Security Update for Dell PowerScale OneFS Multiple Third-Party Component Vulnerabilities

Oversigt: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Denne artikel gælder for Denne artikel gælder ikke for Denne artikel er ikke knyttet til et bestemt produkt. Det er ikke alle produktversioner, der er identificeret i denne artikel.
Udforsk andre ressourcer

Virkning

Critical

Oplysninger

Third-Party Component CVEs More information
AMI AptioV CVE-2024-42444, CVE-2024-7344 https://nvd.nist.gov/vuln/search
Dell PowerEdge Server BIOS CVE-2024-45332, CVE-2024-28047, CVE-2024-28956 DSA-2025-041, DSA-2025-156
OpenSSL CVE-2022-4450, CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465, CVE-2023-6237, CVE-2024-5535, CVE-2024-6119, CVE-2024-13176 https://nvd.nist.gov/vuln/search
Tianocore EDK2  CVE-2024-38796 https://nvd.nist.gov/vuln/search

 

Dell Technologies anbefaler, at alle kunder tager hensyn til både CVSS-basisresultatet og alle relevante tidsmæssige og miljømæssige resultater, som kan have betydning for den potentielle alvorsgrad, der er forbundet med en bestemt sikkerhedsrisiko.

Berørte produkter og udbedring

Product Software/Firmware Affected Versions Remediated Versions Link
PowerScale A300 PowerScale Node Firmware Package Versions prior to 13.2.3 Version 13.2.3 or later PowerScale OneFS Downloads Area
PowerScale A3000 PowerScale Node Firmware Package Versions prior to 13.2.3  Version 13.2.3 or later PowerScale OneFS Downloads Area
PowerScale H700 PowerScale Node Firmware Package Versions prior to 13.2.3  Version 13.2.3 or later PowerScale OneFS Downloads Area
PowerScale H7000 PowerScale Node Firmware Package Versions prior to 13.2.3  Version 13.2.3 or later PowerScale OneFS Downloads Area

 

Product Software/Firmware Affected Versions Remediated Versions Link
PowerScale A300 PowerScale Node Firmware Package Versions prior to 13.2.3 Version 13.2.3 or later PowerScale OneFS Downloads Area
PowerScale A3000 PowerScale Node Firmware Package Versions prior to 13.2.3  Version 13.2.3 or later PowerScale OneFS Downloads Area
PowerScale H700 PowerScale Node Firmware Package Versions prior to 13.2.3  Version 13.2.3 or later PowerScale OneFS Downloads Area
PowerScale H7000 PowerScale Node Firmware Package Versions prior to 13.2.3  Version 13.2.3 or later PowerScale OneFS Downloads Area

 

Notes:

  • We encourage all customers to upgrade to the remediated versions. If an upgrade is not feasible, customers should review the CVE details to determine potential risk to their environments.
  • To identify which nodes require upgrading, please refer to the firmware assessment report. For instructions on completing the assessment and report, please refer to the "Run a firmware assessment" section in PowerScale Node Firmware Package 13.2.3 Release Notes documented in Firmware - PowerScale Info Hub.

Løsninger og afhjælpninger

None

Revisionshistorik

RevisionDateDescription
1.02026-05-06Initial Release

 

Relaterede oplysninger

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Ansvarsfraskrivelse

Berørte produkter

Isilon, PowerScale OneFS, PowerScale Archive A300, PowerScale Archive A3000, PowerScale Hybrid H700, PowerScale Hybrid H7000
Artikelegenskaber
Artikelnummer: 000461405
Artikeltype: Dell Security Advisory
Senest ændret: 05 maj 2026
Find svar på dine spørgsmål fra andre Dell-brugere
Supportservices
Kontrollér, om din enhed er dækket af supportservices.