Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

Article Number: 000194237

DSA-2021-250: Dell EMC VxRail Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell EMC VxRail remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Article Content

Impact

High

Details

 
Third-party Component CVEs More Information
VMware ESXi CVE-2021-22045 ESXi build 18828794 contains the update
VMware vCenter CVE-2021-22048 See VMware article VMSA-2021-0025.1. See workaround and mitigation table below.
CVE-2021-21980 See VMware article VMSA-2021-0027
CVE-2021-22049
CVE-2022-22948 See VMware article VMSA-2022-0009
VxM SUSE
Vulnerabilities		 CVE-2015-3414  
CVE-2015-3415
CVE-2016-6153
CVE-2017-10989
CVE-2017-2518
CVE-2017-7555
CVE-2018-20346
CVE-2018-8740
CVE-2018-9517
CVE-2019-16168
CVE-2019-19244
CVE-2019-19317
CVE-2019-19603
CVE-2019-19645
CVE-2019-19646
CVE-2019-19880
CVE-2019-19923
CVE-2019-19924
CVE-2019-19925
CVE-2019-19926
CVE-2019-19959
CVE-2019-20218
CVE-2019-20795
CVE-2019-3874
CVE-2019-3900
CVE-2019-6462
CVE-2019-8457
CVE-2020-12770
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-13631
CVE-2020-13632
CVE-2020-15358
CVE-2020-3702
CVE-2020-8616
CVE-2020-8617
CVE-2020-9327
CVE-2021-22946
CVE-2021-22947
CVE-2021-33574
CVE-2021-34556
CVE-2021-35477
CVE-2021-35550
CVE-2021-35561
CVE-2021-35564
CVE-2021-35565
CVE-2021-35567
CVE-2021-35603
CVE-2021-3640
CVE-2021-3653
CVE-2021-3656
CVE-2021-3677
CVE-2021-3679
CVE-2021-3732
CVE-2021-3733
CVE-2021-3737
CVE-2021-3744
CVE-2021-3752
CVE-2021-3753
CVE-2021-3759
CVE-2021-3764
CVE-2021-38160
CVE-2021-38198
CVE-2021-38204
CVE-2021-40490
PowerEdge 15G
AMD BIOS		 CVE-2020-12944 AMD-SN-1021
CVE-2020-12946
CVE-2020-12951
CVE-2020-12954
CVE-2020-12961
CVE-2020-12988
CVE-2021-26312
CVE-2021-26315
CVE-2021-26320
CVE-2021-26321
CVE-2021-26322
CVE-2021-26323
CVE-2021-26324
CVE-2021-26325
CVE-2021-26326
CVE-2021-26327
CVE-2021-26329
CVE-2021-26330
CVE-2021-26331
CVE-2021-26332
CVE-2021-26335
CVE-2021-26336
CVE-2021-26337
CVE-2021-26338
CVE-2021-26408
CVE-2021-26351
CVE-2021-26352
CVE-2021-26353
CVE-2021-26370
CVE-2021-26390
CVE-2021-46771  
iDRAC8 and iDRAC9 CVE-2021-21581 See Dell KB article DSA-2021-133
CVE-2021-21580
CVE-2021-36301 See Dell KB article DSA-2021-177
CVE-2021-36300
CVE-2021-36299
PowerEdge 14G Intel
BIOS EDK II		 CVE-2019-14553 See Dell KB article DSA-2021-176
PowerEdge 13G or 14G
Intel BIOS		 CVE-2020-24511 See Dell KB article DSA-2021-109
CVE-2020-24512
CVE-2020-8670
CVE-2020-12357
CVE-2020-12358
CVE-2020-12360
CVE-2021-0095
CVE-2020-24486
CVE-2020-24509
CVE-2020-24507
CVE-2020-8703
CVE-2020-24506

 
Third-party Component CVEs More Information
VMware ESXi CVE-2021-22045 ESXi build 18828794 contains the update
VMware vCenter CVE-2021-22048 See VMware article VMSA-2021-0025.1. See workaround and mitigation table below.
CVE-2021-21980 See VMware article VMSA-2021-0027
CVE-2021-22049
CVE-2022-22948 See VMware article VMSA-2022-0009
VxM SUSE
Vulnerabilities		 CVE-2015-3414  
CVE-2015-3415
CVE-2016-6153
CVE-2017-10989
CVE-2017-2518
CVE-2017-7555
CVE-2018-20346
CVE-2018-8740
CVE-2018-9517
CVE-2019-16168
CVE-2019-19244
CVE-2019-19317
CVE-2019-19603
CVE-2019-19645
CVE-2019-19646
CVE-2019-19880
CVE-2019-19923
CVE-2019-19924
CVE-2019-19925
CVE-2019-19926
CVE-2019-19959
CVE-2019-20218
CVE-2019-20795
CVE-2019-3874
CVE-2019-3900
CVE-2019-6462
CVE-2019-8457
CVE-2020-12770
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-13631
CVE-2020-13632
CVE-2020-15358
CVE-2020-3702
CVE-2020-8616
CVE-2020-8617
CVE-2020-9327
CVE-2021-22946
CVE-2021-22947
CVE-2021-33574
CVE-2021-34556
CVE-2021-35477
CVE-2021-35550
CVE-2021-35561
CVE-2021-35564
CVE-2021-35565
CVE-2021-35567
CVE-2021-35603
CVE-2021-3640
CVE-2021-3653
CVE-2021-3656
CVE-2021-3677
CVE-2021-3679
CVE-2021-3732
CVE-2021-3733
CVE-2021-3737
CVE-2021-3744
CVE-2021-3752
CVE-2021-3753
CVE-2021-3759
CVE-2021-3764
CVE-2021-38160
CVE-2021-38198
CVE-2021-38204
CVE-2021-40490
PowerEdge 15G
AMD BIOS		 CVE-2020-12944 AMD-SN-1021
CVE-2020-12946
CVE-2020-12951
CVE-2020-12954
CVE-2020-12961
CVE-2020-12988
CVE-2021-26312
CVE-2021-26315
CVE-2021-26320
CVE-2021-26321
CVE-2021-26322
CVE-2021-26323
CVE-2021-26324
CVE-2021-26325
CVE-2021-26326
CVE-2021-26327
CVE-2021-26329
CVE-2021-26330
CVE-2021-26331
CVE-2021-26332
CVE-2021-26335
CVE-2021-26336
CVE-2021-26337
CVE-2021-26338
CVE-2021-26408
CVE-2021-26351
CVE-2021-26352
CVE-2021-26353
CVE-2021-26370
CVE-2021-26390
CVE-2021-46771  
iDRAC8 and iDRAC9 CVE-2021-21581 See Dell KB article DSA-2021-133
CVE-2021-21580
CVE-2021-36301 See Dell KB article DSA-2021-177
CVE-2021-36300
CVE-2021-36299
PowerEdge 14G Intel
BIOS EDK II		 CVE-2019-14553 See Dell KB article DSA-2021-176
PowerEdge 13G or 14G
Intel BIOS		 CVE-2020-24511 See Dell KB article DSA-2021-109
CVE-2020-24512
CVE-2020-8670
CVE-2020-12357
CVE-2020-12358
CVE-2020-12360
CVE-2021-0095
CVE-2020-24486
CVE-2020-24509
CVE-2020-24507
CVE-2020-8703
CVE-2020-24506

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Product Affected Versions Updated Versions
Dell EMC VxRail Appliance 4.7.x versions before 4.7.540 4.7.540
Product Affected Versions Updated Versions
Dell EMC VxRail Appliance 4.7.x versions before 4.7.540 4.7.540

Workarounds and Mitigations

Product VMSA Version CVE Identifier CVSSv3 Workarounds
vCenter Server Appliance (vCSA) VMware article VMSA-2021-0025.1 6.7 CVE-2021-22048 7.1 VMware article KB86292

Revision History

RevisionDateDescription
1.02021-12-07Initial Release
1.12022-01-04added CVE-2021-22045
1.22022-03-30Added VMSA-2022-0009
1.32022-05-19Added CVEs for AMD-SN-1021

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Information

Article Properties

Affected Product
VxRail 460 and 470 Nodes, VxRail Appliance Family, VxRail Appliance Series, VxRail G410, VxRail G Series Nodes, VxRail D Series Nodes, VxRail D560, VxRail D560F, VxRail E Series Nodes, VxRail E460, VxRail E560, VxRail E560F, VxRail E560N, VxRail E660 , VxRail E660F, VxRail E665F, VxRail E665N, VxRail G560, VxRail G560F, VxRail Gen2 Hardware, VxRail P Series Nodes, VxRail P470, VxRail P570, VxRail P570F, VxRail P580N, VXRAIL P670F, VxRail P675F, VxRail P675N, VxRail S Series Nodes, VxRail S470, VxRail S570, VxRail Software, VxRail V Series Nodes, VxRail V470, VxRail V570, VxRail V570F, VXRAIL V670F ...
Product

Product Security Information

Last Published Date

19 May 2022

Version

7

Article Type

Dell Security Advisory

Back to Top