DSA-2019-059: Dell EMC Network Attached Storage System using Windows Storage Server Security Update for Multiple Hardware Appliance Firmware Vulnerabilities

Summary: Dell EMC iDRAC (Integrated Dell Remote Access Controller) in Dell EMC Network Attached Storage System using Windows Storage Server, requires a security update to address multiple vulnerabilities. ...

Αυτό το άρθρο ισχύει για Αυτό το άρθρο δεν ισχύει για Αυτό το άρθρο δεν συνδέεται με κάποιο συγκεκριμένο προϊόν. Δεν προσδιορίζονται όλες οι εκδόσεις προϊόντων σε αυτό το άρθρο.
Δείτε άλλους πόρους

Impact

High

Details

An integrated Dell Remote Access Controller (iDRAC) is an embedded management platform in PowerEdge servers used in Dell EMC Network Attached Storage System using Windows Storage Server. iDRAC provides browser-based and command-line interfaces for managing and monitoring the server hardware.

Dell EMC iDRAC has been updated to address the following vulnerabilities:

  • CVE-2018-15774
  • CVE-2018-15776
  • CVE-2019-3705
  • CVE-2019-3706
  • CVE-2019-3707

See Dell EMC iDRAC Advisories for more information:

Dell EMC iDRAC Multiple Vulnerabilities (CVE-2018-15774 and CVE-2018-15776)

DSA-2019-028: Dell EMC iDRAC Multiple Vulnerabilities

 

An integrated Dell Remote Access Controller (iDRAC) is an embedded management platform in PowerEdge servers used in Dell EMC Network Attached Storage System using Windows Storage Server. iDRAC provides browser-based and command-line interfaces for managing and monitoring the server hardware.

Dell EMC iDRAC has been updated to address the following vulnerabilities:

  • CVE-2018-15774
  • CVE-2018-15776
  • CVE-2019-3705
  • CVE-2019-3706
  • CVE-2019-3707

See Dell EMC iDRAC Advisories for more information:

Dell EMC iDRAC Multiple Vulnerabilities (CVE-2018-15774 and CVE-2018-15776)

DSA-2019-028: Dell EMC iDRAC Multiple Vulnerabilities

 

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Επηρεαζόμενα προϊόντα και αποκατάσταση

Affected Products:

  • Dell EMC Storage NX3340, NX3240, NX430, NX3330, NX3230

Resolution:

Dell EMC recommends all impacted customers upgrade to the appropriate release: 

  • Dell EMC Dell EMC Storage NX3340, NX3240 iDRAC9 firmware version 3.32.32.32
  • Dell EMC Dell EMC Storage NX430, NX3330, NX3230 iDRAC8 firmware version 2.62.60.60

Link to Remedies:

Customers can download iDRAC firmware for PowerEdge servers and for all other platforms, please select the platform from the Dell support site.

Affected Products:

  • Dell EMC Storage NX3340, NX3240, NX430, NX3330, NX3230

Resolution:

Dell EMC recommends all impacted customers upgrade to the appropriate release: 

  • Dell EMC Dell EMC Storage NX3340, NX3240 iDRAC9 firmware version 3.32.32.32
  • Dell EMC Dell EMC Storage NX430, NX3330, NX3230 iDRAC8 firmware version 2.62.60.60

Link to Remedies:

Customers can download iDRAC firmware for PowerEdge servers and for all other platforms, please select the platform from the Dell support site.

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Νομική αποποίηση ευθύνης

Επηρεαζόμενα προϊόντα

Dell Storage NX3230, Dell EMC Storage NX3240, Dell Storage NX3330, Dell EMC Storage NX3340, Dell Storage NX430
Ιδιότητες άρθρου
Article Number: 000147355
Article Type: Dell Security Advisory
Τελευταία τροποποίηση: 18 Αυγ 2025
Βρείτε απαντήσεις στις ερωτήσεις σας από άλλους χρήστες της Dell
Υπηρεσίες υποστήριξης
Ελέγξτε αν η συσκευή σας καλύπτεται από τις Υπηρεσίες υποστήριξης.