DSA-2025-072: Security Update for Dell PowerScale OneFS for Multiple Security Vulnerabilities
Resumen: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Este artículo se aplica a:
Este artículo no se aplica a:
Este artículo no está vinculado a ningún producto específico.
En este artículo no se identifican todas las versiones de los productos.
Impacto
High
Detalles
|
Third-Party Component |
CVEs |
More information |
|---|---|---|
|
BIOS |
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985 |
|
| iDRAC | CVE-2023-52340, CVE-2024-42154 |
Productos afectados y corrección
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F210 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F710 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F910 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F210 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F710 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F910 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
Note:
- We encourage all customers to upgrade to the remediated versions, if an upgrade is not feasible, we recommend customers to review the CVE details further to more accurately determine potential risk to their environment.
- To identify which nodes require upgrading, please refer to the firmware assessment report. For instructions on completing the assessment and report, please refer to the "Run a firmware assessment" section in PowerScale Node Firmware Package 12.4.2 Release Notes documented in Firmware - PowerScale Info Hub.
- Due to the NFP installation issue with parallel upgrade, customers are advised not to perform parallel upgrades when upgrading from PowerScale OneFS versions lower than: 9.4.0.19, 9.5.1.0, 9.7.1.0, 9.8.0.1, 9.9.0.0.
Historial de revisiones
|
Revision |
Date |
Description |
|---|---|---|
|
1.0 |
2025-02-11 |
Initial Release |
|
2.0 |
2025-07-23 |
Updated for enhance presentation |
Información relacionada
Aviso legal
Productos afectados
PowerScale F210, PowerScale F710, PowerScale F910Propiedades del artículo
Número de artículo: 000283880
Tipo de artículo: Dell Security Advisory
Última modificación: 23 jul 2025
Encuentra las respuestas que necesitas con la ayuda de otros usuarios de Dell
Servicios de asistencia
Comprueba si tu dispositivo está cubierto por los servicios de asistencia.