Article Number: 000219486

DSA-2023-408: Security Update for Dell VxRail Multiple Third-Party Component Vulnerabilities – 8.0.200

Summary: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Critical

Details

Third-Party Component	CVEs	More Information
VMware VM Tools	CVE-2023-20900	VMSA-2023-0019
VMware VCenter	CVE-2023-34048, CVE-2023-34056	VMSA-2023-0023
VxRail Manager Open SSH	CVE-2023-38408	See NVD link below for individual scores for each CVE. https://nvd.nist.gov/
Dell PowerEdge Intel	CVE-2022-40982, CVE-2022-43505, CVE-2022-41804, CVE-2023-23908	DSA-2023-206
Dell PowerEdge AMD	CVE-2023-20566, CVE-2023-20533, CVE-2023-20526, CVE-2023-20521, CVE-2023-20519, CVE-2022-23830, CVE-2022-23820, CVE-2021-46774, CVE-2021-46766, CVE-2021-26345	DSA-2023-355
SUSE	CVE-2023-4781,CVE-2023-4752,CVE-2023-4738,CVE-2023-4735,CVE-2023-4734,CVE-2023-4733,CVE-2023-4569,CVE-2023-4459,CVE-2023-4387,CVE-2023-43787,CVE-2023-43786,CVE-2023-43785,CVE-2023-4273,CVE-2023-4194,CVE-2023-4156,CVE-2023-4147,CVE-2023-4134,CVE-2023-4133,CVE-2023-4128,CVE-2023-4039,CVE-2023-40217,CVE-2023-4016,CVE-2023-4004,CVE-2023-39615,CVE-2023-39418,CVE-2023-39417,CVE-2023-3863,CVE-2023-3817,CVE-2023-3812,CVE-2023-38039,CVE-2023-3776,CVE-2023-3772,CVE-2023-37453,CVE-2023-3611,CVE-2023-3610,CVE-2023-3609,CVE-2023-36054,CVE-2023-35945,CVE-2023-3567,CVE-2023-35001,CVE-2023-34969,CVE-2023-3446,CVE-2023-34319,CVE-2023-3390,CVE-2023-3341,CVE-2023-3338,CVE-2023-32681,CVE-2023-3268,CVE-2023-32182,CVE-2023-32181,CVE-2023-32001,CVE-2023-3159,CVE-2023-31484,CVE-2023-31436,CVE-2023-31248,CVE-2023-3117,CVE-2023-31083,CVE-2023-30079,CVE-2023-30078,CVE-2023-2985,CVE-2023-2975,CVE-2023-29406,CVE-2023-28842,CVE-2023-28841,CVE-2023-28840,CVE-2023-28370,CVE-2023-25588,CVE-2023-25587,CVE-2023-25585,CVE-2023-25193,CVE-2023-2455,CVE-2023-2454,CVE-2023-22652,CVE-2023-2222,CVE-2023-22049,CVE-2023-22045,CVE-2023-22044,CVE-2023-22041,CVE-2023-22036,CVE-2023-22006,CVE-2023-2176,CVE-2023-2166,CVE-2023-2162,CVE-2023-2156,CVE-2023-21400 ,CVE-2023-20898,CVE-2023-20897,CVE-2023-20593,CVE-2023-20588,CVE-2023-20569,CVE-2023-2007,CVE-2023-2004,CVE-2023-1989,CVE-2023-1972,CVE-2023-1579,CVE-2023-1118,CVE-2023-1077,CVE-2023-0687,CVE-2023-0459,CVE-2022-48065,CVE-2022-48064,CVE-2022-48063,CVE-2022-47696,CVE-2022-47695,CVE-2022-47673,CVE-2022-45703,CVE-2022-44840,CVE-2022-4285,CVE-2022-37026,CVE-2022-35206,CVE-2022-35205,CVE-2021-32256,CVE-2020-19726,CVE-2016-3695	See NVD link below for individual scores for each CVE. https://www.suse.com/

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Product	Affected Versions	Remediated Versions	Link
Dell EMC VxRail Appliance	Versions prior to 8.0.200	8.0.200	Drivers & Downloads

Product	Affected Versions	Remediated Versions	Link
Dell EMC VxRail Appliance	Versions prior to 8.0.200	8.0.200	Drivers & Downloads

Revision History

Revision	Date	Description
1.0	2023-11-13	Initial Release
2.0	2023-11-21	Amended to include PowerEdge AMD BIOS vulnerabilities
3.0	2024-04-11	Added CVE-2024-0172

Related Information

Legal Information

Article Properties

Affected Product

VxRail, CloudArray Virtual Edition for VxRail Appliance, VMWare Cloud on Dell EMC VxRail E560F, VMWare Cloud on Dell EMC VxRail E560N, VxRail 460 and 470 Nodes, VxRail Appliance Family, VxRail Appliance Series, VxRail G410, VxRail G Series Nodes , VxRail D Series Nodes, VxRail D560, VxRail D560F, VxRail E Series Nodes, VxRail E460, VxRail E560, VxRail E560 VCF, VxRail E560F, VxRail E560F VCF, VxRail E560N, VxRail E560N VCF, VxRail E660, VxRail E660F, VxRail E660N, VxRail E665, VxRail E665F, VxRail E665N, VxRail G560, VxRail G560 VCF, VxRail G560F, VxRail G560F VCF, VxRail Gen2 Hardware, VxRail P Series Nodes, VxRail P470, VxRail P570, VxRail P570 VCF, VxRail P570F, VxRail P570F VCF, VxRail P580N, VxRail P580N VCF, VXRAIL P670F, VxRail P670N, VxRail P675F, VxRail P675N, VxRail S Series Nodes, VxRail S470, VxRail S570, VxRail S570 VCF, VxRail S670, VxRail Software, VxRail V Series Nodes, VxRail V470, VxRail V570, VxRail V570 VCF, VxRail V570F, VxRail V570F VCF, VXRAIL V670F, VxRail VD-4000R, VxRail VD-4000W, VxRail VD-4000Z, VxRail VD-4510C, VxRail VD-4520C, VxRail VD Series Nodes, VxRail VE-660, VxRail VP-760 ...

DSA-2023-408: Security Update for Dell VxRail Multiple Third-Party Component Vulnerabilities – 8.0.200

Summary: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type

Welcome

Welcome to Dell

DSA-2023-408: Security Update for Dell VxRail Multiple Third-Party Component Vulnerabilities – 8.0.200

Summary: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type