DSA-2021-103:针对 BIOS 漏洞的 Dell PowerEdge 服务器安全更新
Summary: Dell PowerEdge 服务器 BIOS 修复可用于 BIOS 中的多个安全漏洞,恶意用户可能会利用这些漏洞来破坏受影响的系统。
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
High
Details
| 专有代码 CVE | 描述 | CVSS 基本分数 | CVSS 矢量字符串 |
| CVE-2021-21554 |
|
6.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L |
| CVE-2021-21555 |
|
6.1 | |
| CVE-2021-21556 |
|
6.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L |
| CVE-2021-21557 |
|
8.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L |
| 专有代码 CVE | 描述 | CVSS 基本分数 | CVSS 矢量字符串 |
| CVE-2021-21554 |
|
6.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L |
| CVE-2021-21555 |
|
6.1 | |
| CVE-2021-21556 |
|
6.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L |
| CVE-2021-21557 |
|
8.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L |
Affected Products & Remediation
| CVE 地址 | 产品 | 受影响的版本 | 更新的版本和更新版本 | 更新链接 |
| CVE-2021-21554 |
R640 | 2.9.4 之前 | 2.9.4 | R640 驱动程序和下载 |
| R740 | R740 驱动程序和下载 | |||
| R740XD | R740XD 驱动程序和下载 | |||
| R940 | R940 驱动程序和下载 | |||
| R840 | R840 驱动程序和下载 | |||
| R940XA | R940XA 驱动程序和下载 | |||
| MX740C | MX740C 驱动程序和下载 | |||
| MX840C | MX840C 驱动程序和下载 | |||
| CVE-2021-21555 、CVE-2021-21556 |
R640 | 2.11.2 之前 | 2.11.2 | R640 驱动程序和下载 |
| R740 | R740 驱动程序和下载 | |||
| R740XD | R740XD 驱动程序和下载 | |||
| R940 | R940 驱动程序和下载 | |||
| R840 | R840 驱动程序和下载 | |||
| R940XA | R940XA 驱动程序和下载 | |||
| T640 | T640 驱动程序和下载 | |||
| MX740C | MX740C 驱动程序和下载 | |||
| MX840C | MX840C 驱动程序和下载 | |||
| CVE-2021-21557 |
R640 | 2.11.2 之前 | 2.11.2 | R640 驱动程序和下载 |
| R740 | R740 驱动程序和下载 | |||
| R740XD | R740XD 驱动程序和下载 | |||
| R940 | R940 驱动程序和下载 | |||
| R540 | 2.11.2 之前 | 2.11.2 | R540 驱动程序和下载 | |
| R440 | R440 驱动程序和下载 | |||
| T440 | T440 驱动程序和下载 | |||
| XR2 | XR2 驱动程序和下载 | |||
| R740XD2 | 2.11.2 之前 | 2.11.2 | R740XD2 驱动程序和下载 | |
| R840 | 2.11.2 之前 | 2.11.2 |
R840 驱动程序和下载 | |
| R940XA | R940XA 驱动程序和下载 | |||
| T640 | 2.11.2 之前 | 2.11.2 | T640 驱动程序和下载 | |
| C6420 | 2.11.2 之前 | C6420 驱动程序和下载 | ||
| FC640 | 2.11.2 之前 | 2.11.2 | FC640 驱动程序和下载 | |
| M640 | M640 驱动程序和下载 | |||
| M640P | M640P 驱动程序和下载 | |||
| MX740C | 2.11.2 之前 | 2.11.2 | MX740C 驱动程序和下载 | |
| MX840C | 2.11.2 之前 | 2.11.2 | MX840C 驱动程序和下载 | |
| C4140 | 2.11.2 之前 | 2.11.2 | C4140 驱动程序和下载 | |
| T140 | 2.5.1 之前 | 2.5.1 | T140 驱动程序和下载 | |
| T340 | T340 驱动程序和下载 | |||
| R240 | R240 驱动程序和下载 | |||
| R340 | R340 驱动程序和下载 | |||
| R6415 | 1.16.1 之前 | 1.16.1 | R6415 驱动程序与下载 | |
| R7415 | R7415 驱动程序与下载 | |||
| R7425 | 1.16.1 之前 | 1.16.1 | R7425 驱动程序与下载 | |
| R6515 | 2.2.4 之前 | 2.2.4 | R6515 驱动程序与下载 | |
| R7515 | R7515 驱动程序与下载 | |||
| R6525 | 2.2.5 之前 | 2.2.5 | R6525 驱动程序与下载 | |
| R7525 | R7525 驱动程序与下载 | |||
| C6525 | 2.2.4 之前 | 2.2.4 | C6525 驱动程序与下载 |
提醒:
- 上表可能不是所有受影响的支持版本的完整列表,并且可能会随着更多信息可用而进行更新。
| CVE 地址 | 产品 | 受影响的版本 | 更新的版本和更新版本 | 更新链接 |
| CVE-2021-21554 |
R640 | 2.9.4 之前 | 2.9.4 | R640 驱动程序和下载 |
| R740 | R740 驱动程序和下载 | |||
| R740XD | R740XD 驱动程序和下载 | |||
| R940 | R940 驱动程序和下载 | |||
| R840 | R840 驱动程序和下载 | |||
| R940XA | R940XA 驱动程序和下载 | |||
| MX740C | MX740C 驱动程序和下载 | |||
| MX840C | MX840C 驱动程序和下载 | |||
| CVE-2021-21555 、CVE-2021-21556 |
R640 | 2.11.2 之前 | 2.11.2 | R640 驱动程序和下载 |
| R740 | R740 驱动程序和下载 | |||
| R740XD | R740XD 驱动程序和下载 | |||
| R940 | R940 驱动程序和下载 | |||
| R840 | R840 驱动程序和下载 | |||
| R940XA | R940XA 驱动程序和下载 | |||
| T640 | T640 驱动程序和下载 | |||
| MX740C | MX740C 驱动程序和下载 | |||
| MX840C | MX840C 驱动程序和下载 | |||
| CVE-2021-21557 |
R640 | 2.11.2 之前 | 2.11.2 | R640 驱动程序和下载 |
| R740 | R740 驱动程序和下载 | |||
| R740XD | R740XD 驱动程序和下载 | |||
| R940 | R940 驱动程序和下载 | |||
| R540 | 2.11.2 之前 | 2.11.2 | R540 驱动程序和下载 | |
| R440 | R440 驱动程序和下载 | |||
| T440 | T440 驱动程序和下载 | |||
| XR2 | XR2 驱动程序和下载 | |||
| R740XD2 | 2.11.2 之前 | 2.11.2 | R740XD2 驱动程序和下载 | |
| R840 | 2.11.2 之前 | 2.11.2 |
R840 驱动程序和下载 | |
| R940XA | R940XA 驱动程序和下载 | |||
| T640 | 2.11.2 之前 | 2.11.2 | T640 驱动程序和下载 | |
| C6420 | 2.11.2 之前 | C6420 驱动程序和下载 | ||
| FC640 | 2.11.2 之前 | 2.11.2 | FC640 驱动程序和下载 | |
| M640 | M640 驱动程序和下载 | |||
| M640P | M640P 驱动程序和下载 | |||
| MX740C | 2.11.2 之前 | 2.11.2 | MX740C 驱动程序和下载 | |
| MX840C | 2.11.2 之前 | 2.11.2 | MX840C 驱动程序和下载 | |
| C4140 | 2.11.2 之前 | 2.11.2 | C4140 驱动程序和下载 | |
| T140 | 2.5.1 之前 | 2.5.1 | T140 驱动程序和下载 | |
| T340 | T340 驱动程序和下载 | |||
| R240 | R240 驱动程序和下载 | |||
| R340 | R340 驱动程序和下载 | |||
| R6415 | 1.16.1 之前 | 1.16.1 | R6415 驱动程序与下载 | |
| R7415 | R7415 驱动程序与下载 | |||
| R7425 | 1.16.1 之前 | 1.16.1 | R7425 驱动程序与下载 | |
| R6515 | 2.2.4 之前 | 2.2.4 | R6515 驱动程序与下载 | |
| R7515 | R7515 驱动程序与下载 | |||
| R6525 | 2.2.5 之前 | 2.2.5 | R6525 驱动程序与下载 | |
| R7525 | R7525 驱动程序与下载 | |||
| C6525 | 2.2.4 之前 | 2.2.4 | C6525 驱动程序与下载 |
提醒:
- 上表可能不是所有受影响的支持版本的完整列表,并且可能会随着更多信息可用而进行更新。
Revision History
| 修订 | 日期 | 描述 |
| 1.0 | 2021-06-08 | 初版 |
Acknowledgements
Dell Technologies 感谢 NVIDIA 产品安全团队的 Alexander Tereshkin 和 Alexander Matrosov 报告这些问题。
Related Information
Legal Disclaimer
Affected Products
PowerEdge, PowerEdge XR2, Poweredge C4140, PowerEdge C6420, PowerEdge C6525, PowerEdge FC640, PowerEdge M640, PowerEdge M640 (for PE VRTX), PowerEdge MX740C, PowerEdge MX840C, PowerEdge R240, PowerEdge R340, PowerEdge R440, PowerEdge R540
, PowerEdge R640, PowerEdge R6415, PowerEdge R6515, PowerEdge R6525, PowerEdge R740, PowerEdge R740XD, PowerEdge R740XD2, PowerEdge R7415, PowerEdge R7425, PowerEdge R7515, PowerEdge R7525, PowerEdge R840, PowerEdge R940, PowerEdge R940xa, PowerEdge T140, PowerEdge T340, PowerEdge T440, PowerEdge T640, Product Security Information
...
Article Properties
Article Number: 000187958
Article Type: Dell Security Advisory
Last Modified: 11 Jun 2021
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.