DSA-2020-235: Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.
Consulte estos recursos

Impacto

Critical

Detalles

Multiple components within Dell EMC VxRail Appliance require a security update to address various vulnerabilities.

Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

VxRail Software

Productos

Product Security Information, VxRail Appliance Family, VxRail Appliance Series, VxRail Software
Propiedades del artículo
Número del artículo: 000180948
Tipo de artículo: Dell Security Advisory
Última modificación: 22 may. 2021
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.