DSA-2022-147: DELL EMC PowerFlex 15G-Based Custom Node, 14G-Based VxFlex Ready Node, and 13G-Based ScaleIO Ready Node Security Update for iDRAC-Based Vulnerabilities

Resumen: Remediation is available for iDRAC security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.
Consulte estos recursos

Impacto

High

Detalles

Component CVEs More Information
iDRAC CVE-2022-24423 Dell article 198064, DSA-2022-069: Dell iDRAC8 Security Update for a Denial of Service Vulnerability
CVE-2022-0778 Dell article 200644, DSA-2022-154: Dell iDRAC8 and Dell iDRAC9 Security Update for an OpenSSL Vulnerability
Component CVEs More Information
iDRAC CVE-2022-24423 Dell article 198064, DSA-2022-069: Dell iDRAC8 Security Update for a Denial of Service Vulnerability
CVE-2022-0778 Dell article 200644, DSA-2022-154: Dell iDRAC8 and Dell iDRAC9 Security Update for an OpenSSL Vulnerability
Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-0778 R650 and R750 Custom Node iDRAC versions before 5.10.30.00 5.10.30.00 Downloads (in case of upgrade using OME)
Documents (in case of manual upgrade)
CVE-2022-0778 R640, R740, and R840 VxFlex Ready Node iDRAC versions before 5.10.30.00 5.10.30.00 Downloads (in case of upgrade using OME)
Documents (in case of manual upgrade)
CVE-2022-0778 R630 and R730xd ScaleIO Ready Node  iDRAC versions before 2.83.83.83 2.83.83.83 Downloads (in case of upgrade using OME)
Documents (in case of manual upgrade)
CVE-2022-24423
CVEs Addressed Product Affected Versions Updated Versions Link to Update
CVE-2022-0778 R650 and R750 Custom Node iDRAC versions before 5.10.30.00 5.10.30.00 Downloads (in case of upgrade using OME)
Documents (in case of manual upgrade)
CVE-2022-0778 R640, R740, and R840 VxFlex Ready Node iDRAC versions before 5.10.30.00 5.10.30.00 Downloads (in case of upgrade using OME)
Documents (in case of manual upgrade)
CVE-2022-0778 R630 and R730xd ScaleIO Ready Node  iDRAC versions before 2.83.83.83 2.83.83.83 Downloads (in case of upgrade using OME)
Documents (in case of manual upgrade)
CVE-2022-24423

Historial de revisiones

RevisionDateDescription
1.02022-06-22Initial release

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

VxFlex Ready Nodes, PowerFlex custom node, ScaleIO, PowerFlex custom node, PowerFlex custom node R650, PowerFlex custom node R750, Product Security Information, VxFlex Ready Node, VxFlex Ready Node R640, VxFlex Ready Node R740xd, Ready Node Series , VxFlex Ready Node R840 ...
Propiedades del artículo
Número del artículo: 000200861
Tipo de artículo: Dell Security Advisory
Última modificación: 22 jun 2023
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.