Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.

Article Number: 000180484


DSA-2020-246: Dell EMC Server Platform Security Advisory for the monthly and 2020.2 Intel Platform Updates (November 2020)

Summary: Dell EMC Server Platform Security Advisory for the monthly and 2020.2 Intel Platform Updates (November 2020) contains remediation for Dell EMC PowerEdge server that may be exploited bySee more

Article Content


Impact

High

Overview

.

Details

Details: 
Updates are available to address the following security vulnerabilities.
CVE-2020-0587    CVE-2020-0588    CVE-2020-0590    CVE-2020-0591    CVE-2020-0592
CVE-2020-0593
CVE-2020-8705    CVE-2020-8744    CVE-2020-8755
CVE-2020-8696
CVE-2020-8695    CVE-2020-8694
CVE-2020-8738    CVE-2020-8739    CVE-2020-8740    CVE-2020-8764

Customers should also review their OS vendor’s Security Advisory for information, to ensure appropriate vulnerability identification and patch/configuration measures to be used in conjunction with the updates provided by Dell for the most effective mitigation.

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.
Details: 
Updates are available to address the following security vulnerabilities.
CVE-2020-0587    CVE-2020-0588    CVE-2020-0590    CVE-2020-0591    CVE-2020-0592
CVE-2020-0593
CVE-2020-8705    CVE-2020-8744    CVE-2020-8755
CVE-2020-8696
CVE-2020-8695    CVE-2020-8694
CVE-2020-8738    CVE-2020-8739    CVE-2020-8740    CVE-2020-8764

Customers should also review their OS vendor’s Security Advisory for information, to ensure appropriate vulnerability identification and patch/configuration measures to be used in conjunction with the updates provided by Dell for the most effective mitigation.

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Resolution:   
The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.

We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.

Visit the Drivers and Downloads site for updates on the applicable products. Note, the following list of impacted products with released BIOS updates are linked. To learn more, visit the Dell Knowledge Base article Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.


Dell EMC Server Products Affected

Product BIOS Update Version (or greater) Release Date / Expected Release Date

R740, R740xd, R640, R940

2.9.4

11/20/20

C6420

2.9.3

11/10/20

R540, R440, T440

2.9.3

11/10/20

FC640, M640, M640 VRTX

2.9.3

11/10/20

T640

2.9.4

11/20/20

C4140

2.9.3

11/10/20

R840, R940XA

2.9.4

11/20/20

MX740c

2.9.4

11/20/20

MX840c

2.9.4

11/20/20

R340, R240, T340, T140

2.4.1

11/11/20

R740xd2

2.9.3

11/10/20

T40

1.4.0

11/20/20

R730, R730xd, R630

 

1/20/21

C4130

 

1/26/21

R930

 

Feb 2021

M630, M630p, FC630

2.12.0

1/8/21

FC430

2.12.0

1/8/21

M830, M830p, FC830

2.12.0

1/8/21

T630

2.12.0

1/11/21

R530, R430, T430

2.12.0

1/11/21

T130, R230, T330, R330

2.11.0

1/11/21

R830

1.12.0

1/11/21

C6320

2.12.0

1/11/21

T30

1.5.0

1/11/21

R530xd

N/A

Not impacted

Resolution:   
The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.

We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.

Visit the Drivers and Downloads site for updates on the applicable products. Note, the following list of impacted products with released BIOS updates are linked. To learn more, visit the Dell Knowledge Base article Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.


Dell EMC Server Products Affected

Product BIOS Update Version (or greater) Release Date / Expected Release Date

R740, R740xd, R640, R940

2.9.4

11/20/20

C6420

2.9.3

11/10/20

R540, R440, T440

2.9.3

11/10/20

FC640, M640, M640 VRTX

2.9.3

11/10/20

T640

2.9.4

11/20/20

C4140

2.9.3

11/10/20

R840, R940XA

2.9.4

11/20/20

MX740c

2.9.4

11/20/20

MX840c

2.9.4

11/20/20

R340, R240, T340, T140

2.4.1

11/11/20

R740xd2

2.9.3

11/10/20

T40

1.4.0

11/20/20

R730, R730xd, R630

 

1/20/21

C4130

 

1/26/21

R930

 

Feb 2021

M630, M630p, FC630

2.12.0

1/8/21

FC430

2.12.0

1/8/21

M830, M830p, FC830

2.12.0

1/8/21

T630

2.12.0

1/11/21

R530, R430, T430

2.12.0

1/11/21

T130, R230, T330, R330

2.11.0

1/11/21

R830

1.12.0

1/11/21

C6320

2.12.0

1/11/21

T30

1.5.0

1/11/21

R530xd

N/A

Not impacted

Workarounds and Mitigations

None

Revision History

RevisionDateDescription
1.02020-12-09Initial Release

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


Article Properties


Affected Product

Dell XC6320 Hyper-converged Appliance, Dell EMC XC Series XC6420 Appliance, Storage Spaces Direct R440 Ready Node, Storage Spaces Direct R740xd Ready Node, Storage Spaces Direct R740xd2 Ready node, PowerEdge C4130, PowerEdge C4140, PowerEdge C6320Dell XC6320 Hyper-converged Appliance, Dell EMC XC Series XC6420 Appliance, Storage Spaces Direct R440 Ready Node, Storage Spaces Direct R740xd Ready Node, Storage Spaces Direct R740xd2 Ready node, PowerEdge C4130, PowerEdge C4140, PowerEdge C6320, PowerEdge C6320p, PowerEdge C6420, PowerEdge FC430, PowerEdge FC630, PowerEdge FC640, PowerEdge FC830, PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge M640, PowerEdge M640 (for PE VRTX), PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge MX740c, PowerEdge MX840c, PowerEdge R230, PowerEdge R240, PowerEdge R330, PowerEdge R340, PowerEdge R430, PowerEdge R440, PowerEdge R530, PowerEdge R530xd, PowerEdge R540, PowerEdge R630, PowerEdge R640, PowerEdge R730, PowerEdge R730xd, PowerEdge R740, PowerEdge R740xd, PowerEdge R740xd2, PowerEdge R830, PowerEdge R840, PowerEdge R930, PowerEdge R940, PowerEdge R940xa, PowerEdge T130, PowerEdge T140, PowerEdge T30, PowerEdge T330, PowerEdge T340, PowerEdge T40, PowerEdge T430, PowerEdge T440, PowerEdge T630, PowerEdge T640, VxFlex Ready Node R740xd, Dell EMC vSAN C6420 Ready Node, Dell EMC vSAN R440 Ready Node, Dell EMC vSAN R740xd Ready Node, PowerFlex appliance R740XD, PowerFlex appliance R840, VxFlex Ready Node R840See more

Last Published Date

03 Feb 2022

Version

9

Article Type

Dell Security Advisory