Le damos la bienvenida
Le damos la bienvenida a Dell
Mi cuenta
- Realice pedidos rápida y fácilmente.
- Vea los pedidos y haga el seguimiento del estado del envío.
- Cree una lista de sus productos y acceda a ella
- Gestione sus sitios, productos y contactos a nivel de producto de Dell EMC con la administración de empresa.
Número de artículo: 000213224
DSA-2023-145: Dell PowerFlex rack Security Update for Multiple Third-Party Vulnerabilities
Resumen: Dell PowerFlex rack remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Contenido del artículo
Impacto
Critical
Detalles
| Third-party Component | CVEs | More information |
|---|---|---|
| Intel 500 Series Adapters | CVE-2022-36416, CVE-2022-36797 | https://nvd.nist.gov/vuln/detail/222-36416 , https://nvd.nist.gov/vuln/detail/CVE-2022-36797 |
| Intel 710 Series Adapters | CVE-2021-33126 | https://nvd.nist.gov/vuln/detail/CVE-2021-33126 |
| ESXi | CVE-2022-31705 | VMSA-2022-0033 |
| Dell PowerEdge Server BIOS | CVE-2022-36794, CVE-2022-30539, CVE-2022-32231, CVE-2022-26837, CVE-2022-30704, CVE-2021-0187, CVE-2022-26343, CVE-2022-36348, CVE-2022-33196, CVE-2022-33972, CVE-2022-21216, CVE-2022-38090 | DSA-2023-014 |
| ESXi | CVE-2022-31696 | VMSA-2022-0030 |
| vCenter Server | CVE-2022-31697 | VMSA-2022-0030 |
| Cisco Switches | CVE-2023-20050 | https://nvd.nist.gov/vuln/detail/CVE-2023-20050 |
| Dell PowerEdge Server BIOS | CVE-2021-46769, CVE-2021-26354, CVE-2021-26371, CVE-2021-26379, CVE-2021-46763, CVE-2021-46756, CVE-2021-46764, CVE-2021-26356, CVE-2021-26406, CVE-2021-46775, CVE-2023-20524, CVE-2021-46762, CVE-2022-23818, CVE-2021-26397, CVE-2023-20520 | DSA-2023-105 |
Productos afectados y corrección
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| PowerFlex rack | RCM | Versions prior to 3.6.3.2 | Version 3.6.3.2 | https://vce.flexnetoperations.com/control/vcec/product?plneID=740417 |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| PowerFlex rack | RCM | Versions prior to 3.6.3.2 | Version 3.6.3.2 | https://vce.flexnetoperations.com/control/vcec/product?plneID=740417 |
For PowerFlex rack RCM release information:
https://cicodeportal.dell.com/#/search-results?platformFilter=33&hypervisorFilter=&searchKeyword=&searchElement=RCM&limitTo=any&fromDate=&tillDate=&statuses=Active&statuses=Deprecated&statuses=Expired&searchGuide=9c927126-ea81-403b-913e-f7a14cd87e9f
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
https://cicodeportal.dell.com/#/search-results?platformFilter=33&hypervisorFilter=&searchKeyword=&searchElement=RCM&limitTo=any&fromDate=&tillDate=&statuses=Active&statuses=Deprecated&statuses=Expired&searchGuide=9c927126-ea81-403b-913e-f7a14cd87e9f
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
Soluciones alternativas y mitigaciones
None.
Historial de revisiones
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2023-04-28 | Initial Release |
| 2.0 | 2023-05-21 | Added CVEs impacted |
| 3.0 | 2023-09-01 | Updated for enhanced presentation with no changes to content. |
Información relacionada
Información legal
Propiedades del artículo
Producto afectado
PowerFlex rack
Fecha de la última publicación
01 sept 2023
Versión
3
Tipo de artículo
Dell Security Advisory