DSA-2020-264: Dell EMC PowerFlex rack Security Update for Multiple Third-Party Component Vulnerabilities

Summary: The Panduit IPI component models V3.0 and V3.5 cabinets with firmware version 2.07.03 and prior used in Dell EMC PowerFlex rack require a security update to address various vulnerabilities. ...

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Critical

Details


 
Third-party Component CVE(s) More information
Panduit Intelligent Physical Infrastructure (IPI) Appliance CVE-2020-11896 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2020-11897
CVE-2020-11898
CVE-2020-11899
CVE-2020-11900
CVE-2020-11901
CVE-2020-11902
CVE-2020-11903
CVE-2020-11904
CVE-2020-11905
CVE-2020-11906
CVE-2020-11907
CVE-2020-11908
CVE-2020-11909
CVE-2020-11910
CVE-2020-11911
CVE-2020-11912
CVE-2020-11913
CVE-2020-11914
 
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.   To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.

 
Third-party Component CVE(s) More information
Panduit Intelligent Physical Infrastructure (IPI) Appliance CVE-2020-11896 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2020-11897
CVE-2020-11898
CVE-2020-11899
CVE-2020-11900
CVE-2020-11901
CVE-2020-11902
CVE-2020-11903
CVE-2020-11904
CVE-2020-11905
CVE-2020-11906
CVE-2020-11907
CVE-2020-11908
CVE-2020-11909
CVE-2020-11910
CVE-2020-11911
CVE-2020-11912
CVE-2020-11913
CVE-2020-11914
 
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.   To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Affected Products:
Dell EMC PowerFlex rack versions prior to 3.3.8.2
Dell EMC PowerFlex rack versions prior to 3.4.3.2
Dell EMC PowerFlex rack versions prior to 3.5.3.2

Remediation:
The following Dell EMC PowerFlex rack releases contain a resolution to these vulnerabilities:
  • Dell EMC PowerFlex rack version 3.3.8.2
  • Dell EMC PowerFlex rack version 3.4.3.2
  • Dell EMC PowerFlex rack version 3.5.3.2

Dell EMC recommends all customers upgrade at the earliest opportunity.
For RCM release information: https://cpsdocs.dellemc.com/rcm/#/home.
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
 
Affected Products:
Dell EMC PowerFlex rack versions prior to 3.3.8.2
Dell EMC PowerFlex rack versions prior to 3.4.3.2
Dell EMC PowerFlex rack versions prior to 3.5.3.2

Remediation:
The following Dell EMC PowerFlex rack releases contain a resolution to these vulnerabilities:
  • Dell EMC PowerFlex rack version 3.3.8.2
  • Dell EMC PowerFlex rack version 3.4.3.2
  • Dell EMC PowerFlex rack version 3.5.3.2

Dell EMC recommends all customers upgrade at the earliest opportunity.
For RCM release information: https://cpsdocs.dellemc.com/rcm/#/home.
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

PowerFlex rack, Product Security Information, PowerFlex Software
Article Properties
Article Number: 000180938
Article Type: Dell Security Advisory
Last Modified: 18 Sep 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.