Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.

Article Number: 000182399


DSA-2021-015 Dell VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell VxRail Appliance contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Article Content


Impact

Critical

Details

.

Third-party Component CVE Number More information
VMware ESXi 7.0 U1c/P02 CVE-2020-3999 VMSA-2020-0029
VMSA-2021-0002
CVE-2021-21974
VMware vCenter 7.0 U1c CVE-2021-21972  VMSA-2021-0002
CVE-2021-21973
Oracle Critical Patch Update CVE-2020-14779 Oracle Critical Patch Update - October 2020
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
SUSE Enterprise Linux Server 15 SP2





 
SUSE Enterprise Linux Server 15 SP2 Updates
Dell iDRAC9 CVE-2020-26198 DSA-2020-268: Dell EMC iDRAC9 Reflected XSS Vulnerability
Intel Platform Updates
  • VxRail E560
  • VxRail E560F
  • VxRail E560N
  • VxRail P570
  • VxRail P570F
  • VxRail V570
  • VxRail V570F
  • VxRail G560
  • VxRail G560/F
  • VxRail S570
  • VxRail P580N
  • VxRail D560
  • VxRail D560F
  • VxRail E460,
  • VxRail E460F,
  • VxRail P470,
  • VxRail P470F,
  • VxRail V470,
  • VxRail V470F,
  • VxRail S470
CVE-2020-0587
CVE-2020-0588
CVE-2020-0590
CVE-2020-0591
CVE-2020-0592
CVE-2020-0593
CVE-2020-8705
CVE-2020-8744   
CVE-2020-8755

CVE-2020-8696

CVE-2020-8695   
CVE-2020-8694

CVE-2020-8738   
CVE-2020-8739   
CVE-2020-8740   
CVE-2020-8764
DSA-2020-246: Dell EMC Server Platform Security Advisory for the monthly and 2020.2 Intel Platform Updates (November 2020)
Third-party Component CVE Number More information
VMware ESXi 7.0 U1c/P02 CVE-2020-3999 VMSA-2020-0029
VMSA-2021-0002
CVE-2021-21974
VMware vCenter 7.0 U1c CVE-2021-21972  VMSA-2021-0002
CVE-2021-21973
Oracle Critical Patch Update CVE-2020-14779 Oracle Critical Patch Update - October 2020
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
SUSE Enterprise Linux Server 15 SP2





 
SUSE Enterprise Linux Server 15 SP2 Updates
Dell iDRAC9 CVE-2020-26198 DSA-2020-268: Dell EMC iDRAC9 Reflected XSS Vulnerability
Intel Platform Updates
  • VxRail E560
  • VxRail E560F
  • VxRail E560N
  • VxRail P570
  • VxRail P570F
  • VxRail V570
  • VxRail V570F
  • VxRail G560
  • VxRail G560/F
  • VxRail S570
  • VxRail P580N
  • VxRail D560
  • VxRail D560F
  • VxRail E460,
  • VxRail E460F,
  • VxRail P470,
  • VxRail P470F,
  • VxRail V470,
  • VxRail V470F,
  • VxRail S470
CVE-2020-0587
CVE-2020-0588
CVE-2020-0590
CVE-2020-0591
CVE-2020-0592
CVE-2020-0593
CVE-2020-8705
CVE-2020-8744   
CVE-2020-8755

CVE-2020-8696

CVE-2020-8695   
CVE-2020-8694

CVE-2020-8738   
CVE-2020-8739   
CVE-2020-8740   
CVE-2020-8764
DSA-2020-246: Dell EMC Server Platform Security Advisory for the monthly and 2020.2 Intel Platform Updates (November 2020)
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

CVE(s) Addressed Product Affected Version(s) Updated Version(s)
See above table Dell VxRail Appliance
  • VxRail E560, E560F, E560N, P570, P570F, V570, V570F, G560, G560/F, S570, P580N, D560, D560F
7.x versions prior to 7.0.130 7.0.130
See above table Dell VxRail Appliance
  • VxRail E460, E460F, P470, P470F, V470, V470F, S470
7.x versions prior to 7.0.131 7.0.131
CVE(s) Addressed Product Affected Version(s) Updated Version(s)
See above table Dell VxRail Appliance
  • VxRail E560, E560F, E560N, P570, P570F, V570, V570F, G560, G560/F, S570, P580N, D560, D560F
7.x versions prior to 7.0.130 7.0.130
See above table Dell VxRail Appliance
  • VxRail E460, E460F, P470, P470F, V470, V470F, S470
7.x versions prior to 7.0.131 7.0.131

Workarounds and Mitigations

.

Revision History

RevisionDateDescription
1.02021-01-28Initial Release
1.12021-02-02Updated to clarify Affected Versions section
1.22021-02-10Added the following VxRail models to the Intel Platform Updates section since the 7.0.131 release allows these models to consume the 2020.2 Intel Platform Updates:
  • VxRail E460, E460F, P470, P470F, V470, V470F, S470
1.32021-03-04Added details relating to VMSA-2021-0002 which was published on 2/23/2021

Related Information


Article Properties


Affected Product

VxRail, VxRail Appliance Family, VxRail Software

Product

Product Security Information

Last Published Date

22 May 2021

Version

5

Article Type

Dell Security Advisory