Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

Article Number: 000203637

DSA-2022-228: Dell VxRail Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Critical

Details

Third-Party Component	CVE(s)	More Information
VMware ESXi	CVE-2022-21123	DirectPath I/O (PCI-Passthrough) Information Leak vulnerabilities VMSA-2022-0016
	CVE-2022-21125
	CVE-2022-21166
	CVE-2022-23816	Return-Stack-Buffer-Underflow vulnerabilities VMSA-2022-0020.2
	CVE-2022-23825
	CVE-2022-26373
	CVE-2022-28693
	CVE-2022-29901
VMware vCenter	CVE-2022-22982	Server-side request forgery (SSRF) vulnerability VMSA-2022-0018
VMware vCenter	CVE-2022-31681	VMware ESXi contains a null-pointer deference vulnerability VMSA-2022-0025
Dell iDRAC8	CVE-2022-0778	Open SSL vulnerability, see DSA-2022-154 for more information
Dell iDRAC8	CVE-2022-24423	Denial of Service/Resource Exhaustion vulnerability, see DSA-2022-069 for more information
Intel BIOS	CVE-2021-33117	For more information, see Intel-SA-00586
	CVE-2021-0153	For more information, see Intel-SA-00601
	CVE-2021-0154
	CVE-2021-0155
	CVE-2021-0159
	CVE-2021-0188
	CVE-2021-0189
	CVE-2021-0190
	CVE-2021-33103
	CVE-2021-33122
	CVE-2021-33123
	CVE-2021-33124
	CVE-2022-0004	For more information, see Intel-SA-00613
	CVE-2022-0005	For more information, see Intel-SA-00614
	CVE-2021-21131	For more information, see Intel-SA-00616
	CVE-2021-21136	For more information, see Intel-SA-00616
	CVE-2022-21123	For 14G &15G only. For more information, see DSA-2022-161 and Intel-SA-00615
	CVE-2022-21125
	CVE-2022-21127
	CVE-2022-21166
SUSE	CVE-2015-20107
	CVE-2015-8985
	CVE-2017-17087
	CVE-2017-17095
	CVE-2018-20573
	CVE-2018-20574
	CVE-2018-25032
	CVE-2019-17546
	CVE-2019-19377
	CVE-2019-20454
	CVE-2019-6285
	CVE-2019-6292
	CVE-2020-12762
	CVE-2020-19131
	CVE-2020-26541
	CVE-2020-27820
	CVE-2020-27825
	CVE-2020-35521
	CVE-2020-35522
	CVE-2020-35523
	CVE-2020-35524
	CVE-2021-0920
	CVE-2021-20321
	CVE-2021-22570
	CVE-2021-22600
	CVE-2021-25220
	CVE-2021-26341
	CVE-2021-28711
	CVE-2021-28712
	CVE-2021-28713
	CVE-2021-28714
	CVE-2021-28715
	CVE-2021-31799
	CVE-2021-31810
	CVE-2021-32066
	CVE-2021-33061
	CVE-2021-33098
	CVE-2021-33655
	CVE-2021-33656
	CVE-2021-3572
	CVE-2021-3695
	CVE-2021-3696
	CVE-2021-3697
	CVE-2021-3778
	CVE-2021-3796
	CVE-2021-3872
	CVE-2021-3875
	CVE-2021-3903
	CVE-2021-3927
	CVE-2021-3928
	CVE-2021-39648
	CVE-2021-39657
	CVE-2021-3968
	CVE-2021-39698
	CVE-2021-3973
	CVE-2021-3974
	CVE-2021-3984
	CVE-2021-3999
	CVE-2021-4001
	CVE-2021-4002
	CVE-2021-4019
	CVE-2021-4069
	CVE-2021-4083
	CVE-2021-4135
CVE-2021-4136
CVE-2021-4149
CVE-2021-4157
CVE-2021-4159
CVE-2021-41617
CVE-2021-4166
CVE-2021-41817
CVE-2021-4192
CVE-2021-4193
CVE-2021-4197
CVE-2021-4202
CVE-2021-43527
CVE-2021-43565
CVE-2021-43975
CVE-2021-43976
CVE-2021-44733
CVE-2021-44879
CVE-2021-45079
CVE-2021-45095
CVE-2021-45417
CVE-2021-45485
CVE-2021-45486
CVE-2021-45868
CVE-2021-45960
CVE-2021-46059
CVE-2021-46143
CVE-2022-0001
CVE-2022-0002
CVE-2022-0128
CVE-2022-0168
CVE-2022-0185
CVE-2022-0213
CVE-2022-0261
CVE-2022-0318
CVE-2022-0319
CVE-2022-0322
CVE-2022-0330
CVE-2022-0351
CVE-2022-0359
CVE-2022-0361
CVE-2022-0392
CVE-2022-0407
CVE-2022-0413
CVE-2022-0435
CVE-2022-0487
CVE-2022-0492
CVE-2022-0516
CVE-2022-0561
CVE-2022-0562
CVE-2022-0617
CVE-2022-0644
CVE-2022-0696
CVE-2022-0778
CVE-2022-0847
CVE-2022-0850
CVE-2022-0854
CVE-2022-0865
CVE-2022-0891
CVE-2022-0908
CVE-2022-0909
CVE-2022-0924
CVE-2022-0934
CVE-2022-1011
CVE-2022-1015
CVE-2022-1016
CVE-2022-1048
CVE-2022-1055
CVE-2022-1056
CVE-2022-1097
CVE-2022-1158
CVE-2022-1184
CVE-2022-1271
CVE-2022-1292
CVE-2022-1304
CVE-2022-1353
CVE-2022-1381
CVE-2022-1420
CVE-2022-1462
CVE-2022-1516
CVE-2022-1552
CVE-2022-1586
CVE-2022-1587
CVE-2022-1616
CVE-2022-1619
CVE-2022-1620
CVE-2022-1652
CVE-2022-1679
CVE-2022-1729
CVE-2022-1733
CVE-2022-1734
CVE-2022-1735
CVE-2022-1771
CVE-2022-1785
CVE-2022-1796
CVE-2022-1851
CVE-2022-1897
CVE-2022-1898
CVE-2022-1927
CVE-2022-1966
CVE-2022-1974
CVE-2022-1975
CVE-2022-20132
CVE-2022-20141
CVE-2022-20154
CVE-2022-20166
CVE-2022-2068
CVE-2022-2097
CVE-2022-21123
CVE-2022-21125
CVE-2022-21127
CVE-2022-21166
CVE-2022-21180
CVE-2022-21426
CVE-2022-21434
CVE-2022-21443
CVE-2022-21476
CVE-2022-21496
CVE-2022-21540
CVE-2022-21541
CVE-2022-22822
CVE-2022-22823
CVE-2022-22824
CVE-2022-22825
CVE-2022-22826
CVE-2022-22827
CVE-2022-22844
CVE-2022-22934
CVE-2022-22935
CVE-2022-22936
CVE-2022-22941
CVE-2022-22942
CVE-2022-23036
CVE-2022-23037
CVE-2022-23038
CVE-2022-23039
CVE-2022-23040
CVE-2022-23041
CVE-2022-23042
CVE-2022-2318
CVE-2022-23218
CVE-2022-23219
CVE-2022-23302
CVE-2022-23305
CVE-2022-23307
CVE-2022-23308
CVE-2022-23437
CVE-2022-23648
CVE-2022-23852
CVE-2022-23990
CVE-2022-24407
CVE-2022-24448
CVE-2022-24769
CVE-2022-24903
CVE-2022-24958
CVE-2022-24959
CVE-2022-25235
CVE-2022-25236
CVE-2022-25258
CVE-2022-25313
CVE-2022-25314
CVE-2022-25315
CVE-2022-25375
CVE-2022-26490
CVE-2022-26691
CVE-2022-26966
CVE-2022-27191
CVE-2022-27239
CVE-2022-27666
CVE-2022-27781
CVE-2022-27782
CVE-2022-28388
CVE-2022-28389
CVE-2022-28390
CVE-2022-28733
CVE-2022-28734
CVE-2022-28735
CVE-2022-28736
CVE-2022-28739
CVE-2022-28893
CVE-2022-29155
CVE-2022-29824
CVE-2022-29900
CVE-2022-29901
CVE-2022-30594
CVE-2022-31741
CVE-2022-32206
CVE-2022-32208
CVE-2022-33981
CVE-2022-33740
CVE-2022-33741
CVE-2022-33742
CVE-2022-34169
CVE-2022-36946

Third-Party Component	CVE(s)	More Information
VMware ESXi	CVE-2022-21123	DirectPath I/O (PCI-Passthrough) Information Leak vulnerabilities VMSA-2022-0016
	CVE-2022-21125
	CVE-2022-21166
	CVE-2022-23816	Return-Stack-Buffer-Underflow vulnerabilities VMSA-2022-0020.2
	CVE-2022-23825
	CVE-2022-26373
	CVE-2022-28693
	CVE-2022-29901
VMware vCenter	CVE-2022-22982	Server-side request forgery (SSRF) vulnerability VMSA-2022-0018
VMware vCenter	CVE-2022-31681	VMware ESXi contains a null-pointer deference vulnerability VMSA-2022-0025
Dell iDRAC8	CVE-2022-0778	Open SSL vulnerability, see DSA-2022-154 for more information
Dell iDRAC8	CVE-2022-24423	Denial of Service/Resource Exhaustion vulnerability, see DSA-2022-069 for more information
Intel BIOS	CVE-2021-33117	For more information, see Intel-SA-00586
	CVE-2021-0153	For more information, see Intel-SA-00601
	CVE-2021-0154
	CVE-2021-0155
	CVE-2021-0159
	CVE-2021-0188
	CVE-2021-0189
	CVE-2021-0190
	CVE-2021-33103
	CVE-2021-33122
	CVE-2021-33123
	CVE-2021-33124
	CVE-2022-0004	For more information, see Intel-SA-00613
	CVE-2022-0005	For more information, see Intel-SA-00614
	CVE-2021-21131	For more information, see Intel-SA-00616
	CVE-2021-21136	For more information, see Intel-SA-00616
	CVE-2022-21123	For 14G &15G only. For more information, see DSA-2022-161 and Intel-SA-00615
	CVE-2022-21125
	CVE-2022-21127
	CVE-2022-21166
SUSE	CVE-2015-20107
	CVE-2015-8985
	CVE-2017-17087
	CVE-2017-17095
	CVE-2018-20573
	CVE-2018-20574
	CVE-2018-25032
	CVE-2019-17546
	CVE-2019-19377
	CVE-2019-20454
	CVE-2019-6285
	CVE-2019-6292
	CVE-2020-12762
	CVE-2020-19131
	CVE-2020-26541
	CVE-2020-27820
	CVE-2020-27825
	CVE-2020-35521
	CVE-2020-35522
	CVE-2020-35523
	CVE-2020-35524
	CVE-2021-0920
	CVE-2021-20321
	CVE-2021-22570
	CVE-2021-22600
	CVE-2021-25220
	CVE-2021-26341
	CVE-2021-28711
	CVE-2021-28712
	CVE-2021-28713
	CVE-2021-28714
	CVE-2021-28715
	CVE-2021-31799
	CVE-2021-31810
	CVE-2021-32066
	CVE-2021-33061
	CVE-2021-33098
	CVE-2021-33655
	CVE-2021-33656
	CVE-2021-3572
	CVE-2021-3695
	CVE-2021-3696
	CVE-2021-3697
	CVE-2021-3778
	CVE-2021-3796
	CVE-2021-3872
	CVE-2021-3875
	CVE-2021-3903
	CVE-2021-3927
	CVE-2021-3928
	CVE-2021-39648
	CVE-2021-39657
	CVE-2021-3968
	CVE-2021-39698
	CVE-2021-3973
	CVE-2021-3974
	CVE-2021-3984
	CVE-2021-3999
	CVE-2021-4001
	CVE-2021-4002
	CVE-2021-4019
	CVE-2021-4069
	CVE-2021-4083
	CVE-2021-4135
CVE-2021-4136
CVE-2021-4149
CVE-2021-4157
CVE-2021-4159
CVE-2021-41617
CVE-2021-4166
CVE-2021-41817
CVE-2021-4192
CVE-2021-4193
CVE-2021-4197
CVE-2021-4202
CVE-2021-43527
CVE-2021-43565
CVE-2021-43975
CVE-2021-43976
CVE-2021-44733
CVE-2021-44879
CVE-2021-45079
CVE-2021-45095
CVE-2021-45417
CVE-2021-45485
CVE-2021-45486
CVE-2021-45868
CVE-2021-45960
CVE-2021-46059
CVE-2021-46143
CVE-2022-0001
CVE-2022-0002
CVE-2022-0128
CVE-2022-0168
CVE-2022-0185
CVE-2022-0213
CVE-2022-0261
CVE-2022-0318
CVE-2022-0319
CVE-2022-0322
CVE-2022-0330
CVE-2022-0351
CVE-2022-0359
CVE-2022-0361
CVE-2022-0392
CVE-2022-0407
CVE-2022-0413
CVE-2022-0435
CVE-2022-0487
CVE-2022-0492
CVE-2022-0516
CVE-2022-0561
CVE-2022-0562
CVE-2022-0617
CVE-2022-0644
CVE-2022-0696
CVE-2022-0778
CVE-2022-0847
CVE-2022-0850
CVE-2022-0854
CVE-2022-0865
CVE-2022-0891
CVE-2022-0908
CVE-2022-0909
CVE-2022-0924
CVE-2022-0934
CVE-2022-1011
CVE-2022-1015
CVE-2022-1016
CVE-2022-1048
CVE-2022-1055
CVE-2022-1056
CVE-2022-1097
CVE-2022-1158
CVE-2022-1184
CVE-2022-1271
CVE-2022-1292
CVE-2022-1304
CVE-2022-1353
CVE-2022-1381
CVE-2022-1420
CVE-2022-1462
CVE-2022-1516
CVE-2022-1552
CVE-2022-1586
CVE-2022-1587
CVE-2022-1616
CVE-2022-1619
CVE-2022-1620
CVE-2022-1652
CVE-2022-1679
CVE-2022-1729
CVE-2022-1733
CVE-2022-1734
CVE-2022-1735
CVE-2022-1771
CVE-2022-1785
CVE-2022-1796
CVE-2022-1851
CVE-2022-1897
CVE-2022-1898
CVE-2022-1927
CVE-2022-1966
CVE-2022-1974
CVE-2022-1975
CVE-2022-20132
CVE-2022-20141
CVE-2022-20154
CVE-2022-20166
CVE-2022-2068
CVE-2022-2097
CVE-2022-21123
CVE-2022-21125
CVE-2022-21127
CVE-2022-21166
CVE-2022-21180
CVE-2022-21426
CVE-2022-21434
CVE-2022-21443
CVE-2022-21476
CVE-2022-21496
CVE-2022-21540
CVE-2022-21541
CVE-2022-22822
CVE-2022-22823
CVE-2022-22824
CVE-2022-22825
CVE-2022-22826
CVE-2022-22827
CVE-2022-22844
CVE-2022-22934
CVE-2022-22935
CVE-2022-22936
CVE-2022-22941
CVE-2022-22942
CVE-2022-23036
CVE-2022-23037
CVE-2022-23038
CVE-2022-23039
CVE-2022-23040
CVE-2022-23041
CVE-2022-23042
CVE-2022-2318
CVE-2022-23218
CVE-2022-23219
CVE-2022-23302
CVE-2022-23305
CVE-2022-23307
CVE-2022-23308
CVE-2022-23437
CVE-2022-23648
CVE-2022-23852
CVE-2022-23990
CVE-2022-24407
CVE-2022-24448
CVE-2022-24769
CVE-2022-24903
CVE-2022-24958
CVE-2022-24959
CVE-2022-25235
CVE-2022-25236
CVE-2022-25258
CVE-2022-25313
CVE-2022-25314
CVE-2022-25315
CVE-2022-25375
CVE-2022-26490
CVE-2022-26691
CVE-2022-26966
CVE-2022-27191
CVE-2022-27239
CVE-2022-27666
CVE-2022-27781
CVE-2022-27782
CVE-2022-28388
CVE-2022-28389
CVE-2022-28390
CVE-2022-28733
CVE-2022-28734
CVE-2022-28735
CVE-2022-28736
CVE-2022-28739
CVE-2022-28893
CVE-2022-29155
CVE-2022-29824
CVE-2022-29900
CVE-2022-29901
CVE-2022-30594
CVE-2022-31741
CVE-2022-32206
CVE-2022-32208
CVE-2022-33981
CVE-2022-33740
CVE-2022-33741
CVE-2022-33742
CVE-2022-34169
CVE-2022-36946

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Product	Affected Version(s)	Updated Version(s)
Dell VxRail Appliance	7.0.x versions before 7.0.400	7.0.400

Product	Affected Version(s)	Updated Version(s)
Dell VxRail Appliance	7.0.x versions before 7.0.400	7.0.400

Revision History

Revision	Date	Description
1.0	2022-09-22	Initial Release
2.0	2022-10-24	Added SUSE and VMware CVE
3.0	2022-10-27	Added CVE-2022-20166 added CVE-2022-2318, removed CVE-2022-23181

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Information

Article Properties

Affected Product

VxRail, CloudArray Virtual Edition for VxRail Appliance, Product Security Information, VMWare Cloud on Dell EMC VxRail E560F, VMWare Cloud on Dell EMC VxRail E560N, VxRail 460 and 470 Nodes, VxRail Appliance Family, VxRail Appliance Series , VxRail G410, VxRail G Series Nodes, VxRail D Series Nodes, VxRail D560, VxRail D560F, VxRail E Series Nodes, VxRail E460, VxRail E560, VxRail E560 VCF, VxRail E560F, VxRail E560F VCF, VxRail E560N, VxRail E560N VCF, VxRail E660, VxRail E660F, VxRail E660N, VxRail E665, VxRail E665F, VxRail E665N, VxRail G560, VxRail G560 VCF, VxRail G560F, VxRail G560F VCF, VxRail Gen2 Hardware, VxRail P Series Nodes, VxRail P470, VxRail P570, VxRail P570 VCF, VxRail P570F, VxRail P570F VCF, VxRail P580N, VxRail P580N VCF, VXRAIL P670F, VxRail P670N, VxRail P675F, VxRail P675N, VxRail S Series Nodes, VxRail S470, VxRail S570, VxRail S570 VCF, VxRail S670, VxRail Software, VxRail V Series Nodes, VxRail V470, VxRail V570, VxRail V570 VCF, VxRail V570F, VxRail V570F VCF, VXRAIL V670F ...

DSA-2022-228: Dell VxRail Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type

Welcome

Welcome to Dell

DSA-2022-228: Dell VxRail Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type