DSA-2022-087: Dell EMC PowerFlex Custom Node 15G, VxFlex Ready Node 14G, and ScaleIO Ready Node 13G Security Update for Multiple Vulnerabilities
Yhteenveto: Remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.
Tämä artikkeli koskee tuotetta
Tämä artikkeli ei koske tuotetta
Tämä artikkeli ei liity tiettyyn tuotteeseen.
Tässä artikkelissa ei yksilöidä kaikkia tuoteversioita.
Vaikutus
High
Tiedot
| Component | CVEs | More Information |
| Intel | CVE-2021-0060, CVE-2021-0147 | Intel article: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.html |
| CVE-2021-0103, CVE-2021-0114, CVE-2021-0115, CVE-2021-0116, CVE-2021-0117, CVE-2021-0118, CVE-2021-0111, CVE-2021-0107, CVE-2021-0125, CVE-2021-0124, CVE-2021-0119, CVE-2021-0091, CVE-2021-0092, CVE-2021-0093 |
Intel article: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html | |
| CVE-2021-0127 | Intel article: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00532.html | |
| VMware ESXi | CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050 | VMware article: https://www.vmware.com/security/advisories/VMSA-2022-0004.html |
| Dell PowerEdge Server BIOS | CVE-2019-14584, CVE-2021-28210, CVE-2021-28211 | Dell article: https://www.dell.com/support/kbdoc/en-ie/000198065/dsa-2022-088 |
| DELL iDRAC | CVE-2022-24442 | https://blog.jetbrains.com/ |
| Component | CVEs | More Information |
| Intel | CVE-2021-0060, CVE-2021-0147 | Intel article: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.html |
| CVE-2021-0103, CVE-2021-0114, CVE-2021-0115, CVE-2021-0116, CVE-2021-0117, CVE-2021-0118, CVE-2021-0111, CVE-2021-0107, CVE-2021-0125, CVE-2021-0124, CVE-2021-0119, CVE-2021-0091, CVE-2021-0092, CVE-2021-0093 |
Intel article: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html | |
| CVE-2021-0127 | Intel article: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00532.html | |
| VMware ESXi | CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050 | VMware article: https://www.vmware.com/security/advisories/VMSA-2022-0004.html |
| Dell PowerEdge Server BIOS | CVE-2019-14584, CVE-2021-28210, CVE-2021-28211 | Dell article: https://www.dell.com/support/kbdoc/en-ie/000198065/dsa-2022-088 |
| DELL iDRAC | CVE-2022-24442 | https://blog.jetbrains.com/ |
Tuotteet, joihin asia vaikuttaa, ja tilanteen korjaaminen
| CVEs Addressed | Product | Affected Versions | Updated Versions | Link to Update |
| CVE-2019-14584 CVE-2021-28210 CVE-2021-28211 | R650, R750, R6525 custom node |
BIOS Versions before 1.5.4 for Intel and 2.6.6 for AMD |
Intel BIOS: 1.5.4 AMD BIOS: 2.6.6 |
Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2021-0060, CVE-2021-0147, CVE-2021-0103, CVE-2021-0114, CVE-2021-0115, CVE-2021-0116, CVE-2021-0117, CVE-2021-0118, CVE-2021-0099, CVE-2021-0111, CVE-2021-0107, CVE-2021-0125, CVE-2021-0124, CVE-2021-0119, CVE-2021-0092, CVE-2021-0091, CVE-2021-0093, CVE-2021-0127, CVE-2019-14584, CVE-2021-28210 CVE-2021-28211 | R640, R740, and R840 custom node | BIOS versions before 2.13.3 | 2.13.3 | Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2022-24442 | R650, R750 custom node |
iDRAC versions prior to 5.10.10.00 | 5.10.10.00 | Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2022-24442 | R640, R740, R840 custom node | iDRAC versions prior to 5.10.10.00 | 5.10.10.00 | Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050 | ESXi 7.0 patches | Versions before 7.0U3c | 7.0U3c | Refer to Updated Firmware and Driver Support Matrix listing supported ESXi versions per Product offering and link guidance. |
| CVEs Addressed | Product | Affected Versions | Updated Versions | Link to Update |
| CVE-2019-14584 CVE-2021-28210 CVE-2021-28211 | R650, R750, R6525 custom node |
BIOS Versions before 1.5.4 for Intel and 2.6.6 for AMD |
Intel BIOS: 1.5.4 AMD BIOS: 2.6.6 |
Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2021-0060, CVE-2021-0147, CVE-2021-0103, CVE-2021-0114, CVE-2021-0115, CVE-2021-0116, CVE-2021-0117, CVE-2021-0118, CVE-2021-0099, CVE-2021-0111, CVE-2021-0107, CVE-2021-0125, CVE-2021-0124, CVE-2021-0119, CVE-2021-0092, CVE-2021-0091, CVE-2021-0093, CVE-2021-0127, CVE-2019-14584, CVE-2021-28210 CVE-2021-28211 | R640, R740, and R840 custom node | BIOS versions before 2.13.3 | 2.13.3 | Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2022-24442 | R650, R750 custom node |
iDRAC versions prior to 5.10.10.00 | 5.10.10.00 | Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2022-24442 | R640, R740, R840 custom node | iDRAC versions prior to 5.10.10.00 | 5.10.10.00 | Downloads (in case of upgrade using OME) Documents (in case of manual upgrade) |
| CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050 | ESXi 7.0 patches | Versions before 7.0U3c | 7.0U3c | Refer to Updated Firmware and Driver Support Matrix listing supported ESXi versions per Product offering and link guidance. |
Versiohistoria
| Revision | Date | Description |
| 1.0 | 2022-03-29 | Initial release |
| 2.0 | 2022-04-22 | Updated Details Section |
| 3.0 | 2022-05-11 | Updated section with CVE changes |
Asiaan liittyvät tiedot
Vastuuvapauslauseke
Tuotteet, joihin vaikutus kohdistuu
VxFlex Ready Nodes, PowerFlex custom node, PowerFlex custom node, PowerFlex custom node R650, PowerFlex custom node R750, Product Security Information, VxFlex Ready Node, ScaleIO Ready Node-PowerEdge 13G, VxFlex Ready Node R640Artikkelin ominaisuudet
Artikkelin numero: 000198136
Artikkelin tyyppi: Dell Security Advisory
Viimeksi muutettu: 18 syysk. 2025
Etsi vastauksia kysymyksiisi muilta Dell-käyttäjiltä
Tukipalvelut
Tarkista, kuuluuko laitteesi tukipalveluiden piiriin.