DSA-2022-227: Dell VPLEX VS2-Server-PE Security Update for Multiple Security Vulnerabilities

Summary: Dell VPLEX remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Critical

Details

VS2 R240XL Platform: 

Third-party Component  CVEs  More information 
Intel  CVE-2021-0157  Intel-TA-00562 This hyperlink is taking you to a website outside of Dell Technologies.
Intel  CVE-2021-0060  Intel-SA-00470 This hyperlink is taking you to a website outside of Dell Technologies.
Intel  CVE-2021-0127  Intel-SA-00527 This hyperlink is taking you to a website outside of Dell Technologies.
Intel  CVE-2021-33068  Intel-SA-00532 This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-0103 
CVE-2021-0114 
CVE-2021-0115 
CVE-2021-0116 
CVE-2021-0117 
CVE-2021-0118 
CVE-2021-0099 
CVE-2021-0156 
CVE-2021-0111 
CVE-2021-0107 
CVE-2021-0125 
CVE-2021-0124 
CVE-2021-0092 
CVE-2021-0093 
DELL iDRAC  CVE-2021-36346  DSA-2021-259  
CVE-2021-36347  DSA-2021-259  
CVE-2021-36348  DSA-2021-259  
CVE-2021-03712   
CVE-2021-20235  DSA-2021-177 
CVE-2022-24422  DSA-2022-068  
CVE-2020-26198  DSA-2020-268 

VS2 R240XL Platform: 

Third-party Component  CVEs  More information 
Intel  CVE-2021-0157  Intel-TA-00562 This hyperlink is taking you to a website outside of Dell Technologies.
Intel  CVE-2021-0060  Intel-SA-00470 This hyperlink is taking you to a website outside of Dell Technologies.
Intel  CVE-2021-0127  Intel-SA-00527 This hyperlink is taking you to a website outside of Dell Technologies.
Intel  CVE-2021-33068  Intel-SA-00532 This hyperlink is taking you to a website outside of Dell Technologies.
CVE-2021-0103 
CVE-2021-0114 
CVE-2021-0115 
CVE-2021-0116 
CVE-2021-0117 
CVE-2021-0118 
CVE-2021-0099 
CVE-2021-0156 
CVE-2021-0111 
CVE-2021-0107 
CVE-2021-0125 
CVE-2021-0124 
CVE-2021-0092 
CVE-2021-0093 
DELL iDRAC  CVE-2021-36346  DSA-2021-259  
CVE-2021-36347  DSA-2021-259  
CVE-2021-36348  DSA-2021-259  
CVE-2021-03712   
CVE-2021-20235  DSA-2021-177 
CVE-2022-24422  DSA-2022-068  
CVE-2020-26198  DSA-2020-268 
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product 

Affected Versions 

Updated Versions 

Link to Update 

Dell VPLEX

Versions before BIOS 2.8.3
iDRAC9 5.10.10.00 
NIC 22.00.6 

Procedure: 
VS2 R240 Firmware Block Upgrade 
Release Notes and Links: 
VS2 Server PE Firmware Release Notes March 2022 

https://solve.dell.com/solve/home/46 

Product 

Affected Versions 

Updated Versions 

Link to Update 

Dell VPLEX

Versions before BIOS 2.8.3
iDRAC9 5.10.10.00 
NIC 22.00.6 

Procedure: 
VS2 R240 Firmware Block Upgrade 
Release Notes and Links: 
VS2 Server PE Firmware Release Notes March 2022 

https://solve.dell.com/solve/home/46 

Revision History

Revision 

Date 

Description 

1.0 

2022-08-03 

Initial Release 

 

 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

iDRAC9 - 5.xx Series, Product Security Information, VPLEX Series, VPLEX VS2
Article Properties
Article Number: 000202131
Article Type: Dell Security Advisory
Last Modified: 08 Jun 2023
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.