DSA-2023-264: Dell Networking Security Update for Multiple Third-Party Components Vulnerabilities.

Résumé: Dell Networking BIOS remediation is available for Multiple Third-Party Components vulnerabilities that could be exploited by malicious users to compromise the affected system.

Cet article concerne Cet article ne concerne pas Cet article n’est associé à aucun produit spécifique. Toutes les versions du produit ne sont pas identifiées dans cet article.
Consulter d’autres ressources

Impact

High

Détails

Third-party Component  CVEs  More Information 
2021.1 IPU – BIOS Advisory CVE-2020-12357, CVE-2020-12360, CVE-2020-24486, CVE-2020-8670 Intel-SA-00463 This hyperlink is taking you to a website outside of Dell Technologies.
2021.1 IPU - Intel Processor CVE-2020-24511, CVE-2020-24512 Intel-SA-00464 This hyperlink is taking you to a website outside of Dell Technologies.
2021.1 IPU – Intel Atom Processor CVE-2020-24513 Intel-SA-00465 This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies recommande à tous les clients de prendre en compte à la fois le score de base CVSS et les scores temporels et environnementaux pertinents qui peuvent avoir un impact sur la gravité potentielle associée à une faille de sécurité donnée.

Produits concernés et mesure corrective

CVEs Addressed  Product  Software/Firmware Affected Versions  Remediated Versions  Link 
CVE-2020-12360, CVE-2020-24486 Dell Networking Virtual Edge Platform(VEP)4600 Dell Diagnostics OS Recovery Versions prior to UFW 3.5 UFW 3.5 or later https://www.dell.com/support/home/en-us/product-support/product/virtual-edge-platform-4600-16c/drivers
 
CVE-2020-12357, CVE-2020-12360 PowerSwitch Z9332F-ON Dell Networking Firmware Updater Versions prior to 1.1.5 1.1.5 or later https://www.dell.com/support/home/en-us/product-support/product/networking-z9332f-on/drivers
 
CVE-2020-24513 Dell PowerSwitch S-Series S5248-ON Dell Networking Firmware Updater Versions prior to 3.40.5.1-24 3.40.5.1-24 or later https://www.dell.com/support/home/en-us/product-support/product/networking-s5248f-on/drivers
 
CVE-2020-24513 Dell PowerSwitch Z-Series Z9264-ON Dell Networking Firmware Updater Versions prior to 3.42.5.1-17 3.42.5.1-17 or later https://www.dell.com/support/home/en-us/product-support/product/networking-z9264f-on/overview
 
CVE-2020-24513 Virtual Edge Platform 1405(VEP 1425, VEP 1445, VEP1485) Dell Diagnostics OS Versions prior to UFW 2.0 UFW 2.0 or later https://www.dell.com/support/home/en-us/product-support/product/dell-emc-networking-vep1445-vep1485/overview
 
CVE-2020-24513 Dell PowerSwitch N2200-ON Series Dell EMC Networking Firmware Updater Versions prior to 3.45.5.1-28 3.45.5.1-28 or later https://www.dell.com/support/home/en-us/product-support/product/networking-n2200-series/drivers
 
CVE-2020-24513 Dell PowerSwitch N3200-ON Series Dell EMC Networking Firmware Updater Versions prior to 3.45.5.1-28 3.45.5.1-28 or later https://www.dell.com/support/home/en-us/product-support/product/networking-n3200-series/drivers
 
CVE-2020-24513 Dell PowerSwitch
S5448-ON		 Dell Networking Firmware Updater Versions prior to 3.52.5.1-6 3.52.5.1-6 or later https://www.dell.com/support/home/en-us/product-support/product/networking-s5448f-on/drivers
 
CVE-2020-24513 Dell PowerSwitch
Z9432F-ON		 Dell Networking Firmware Updater Versions prior to 3.51.5.1-11 3.51.5.1-11 or later https://www.dell.com/support/home/en-us/product-support/product/networking-z9432f-on/drivers
 
CVE-2020-24513 Dell SD-WAN Edge 600 Dell EMC SD-WAN Solution 3.50.0.9-13 3.50.0.9-17 or later https://www.dell.com/support/home/en-us/product-support/product/sd-wan-edge-600/drivers
 
CVE-2020-8670, CVE-2020-12357, CVE-2020-24511 Dell Edge Gateway 5200 System BIOS Versions prior to 1.04.10 1.04.10 or later https://www.dell.com/support/home/en-us/drivers/driversdetails?driverid=prmn2&oscode=ltsc1&productcode=dell-edge-gateway-5200
 
CVEs Addressed  Product  Software/Firmware Affected Versions  Remediated Versions  Link 
CVE-2020-12360, CVE-2020-24486 Dell Networking Virtual Edge Platform(VEP)4600 Dell Diagnostics OS Recovery Versions prior to UFW 3.5 UFW 3.5 or later https://www.dell.com/support/home/en-us/product-support/product/virtual-edge-platform-4600-16c/drivers
 
CVE-2020-12357, CVE-2020-12360 PowerSwitch Z9332F-ON Dell Networking Firmware Updater Versions prior to 1.1.5 1.1.5 or later https://www.dell.com/support/home/en-us/product-support/product/networking-z9332f-on/drivers
 
CVE-2020-24513 Dell PowerSwitch S-Series S5248-ON Dell Networking Firmware Updater Versions prior to 3.40.5.1-24 3.40.5.1-24 or later https://www.dell.com/support/home/en-us/product-support/product/networking-s5248f-on/drivers
 
CVE-2020-24513 Dell PowerSwitch Z-Series Z9264-ON Dell Networking Firmware Updater Versions prior to 3.42.5.1-17 3.42.5.1-17 or later https://www.dell.com/support/home/en-us/product-support/product/networking-z9264f-on/overview
 
CVE-2020-24513 Virtual Edge Platform 1405(VEP 1425, VEP 1445, VEP1485) Dell Diagnostics OS Versions prior to UFW 2.0 UFW 2.0 or later https://www.dell.com/support/home/en-us/product-support/product/dell-emc-networking-vep1445-vep1485/overview
 
CVE-2020-24513 Dell PowerSwitch N2200-ON Series Dell EMC Networking Firmware Updater Versions prior to 3.45.5.1-28 3.45.5.1-28 or later https://www.dell.com/support/home/en-us/product-support/product/networking-n2200-series/drivers
 
CVE-2020-24513 Dell PowerSwitch N3200-ON Series Dell EMC Networking Firmware Updater Versions prior to 3.45.5.1-28 3.45.5.1-28 or later https://www.dell.com/support/home/en-us/product-support/product/networking-n3200-series/drivers
 
CVE-2020-24513 Dell PowerSwitch
S5448-ON		 Dell Networking Firmware Updater Versions prior to 3.52.5.1-6 3.52.5.1-6 or later https://www.dell.com/support/home/en-us/product-support/product/networking-s5448f-on/drivers
 
CVE-2020-24513 Dell PowerSwitch
Z9432F-ON		 Dell Networking Firmware Updater Versions prior to 3.51.5.1-11 3.51.5.1-11 or later https://www.dell.com/support/home/en-us/product-support/product/networking-z9432f-on/drivers
 
CVE-2020-24513 Dell SD-WAN Edge 600 Dell EMC SD-WAN Solution 3.50.0.9-13 3.50.0.9-17 or later https://www.dell.com/support/home/en-us/product-support/product/sd-wan-edge-600/drivers
 
CVE-2020-8670, CVE-2020-12357, CVE-2020-24511 Dell Edge Gateway 5200 System BIOS Versions prior to 1.04.10 1.04.10 or later https://www.dell.com/support/home/en-us/drivers/driversdetails?driverid=prmn2&oscode=ltsc1&productcode=dell-edge-gateway-5200
 

Solutions de contournement et mesures d’atténuation

None

Historique des révisions

Revision DateDescription
1.02023-08-17Initial Release

Informations connexes

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Mention légale

Produits concernés

Dell Edge Gateway 5200, Dell EMC Networking VEP1425/VEP1445/VEP1485, PowerSwitch N2200-ON Series, Dell EMC Networking N3200-ON, PowerSwitch S5248F-ON, PowerSwitch S5448F-ON, PowerSwitch Z9264F-ON, PowerSwitch Z9332F-ON, PowerSwitch Z9432F-ON , Dell SD-WAN Edge 600, DELL NETWORKING VEP4600 16-CORE, Dell Networking VEP4600 4-CORE, DELL NETWORKING VEP4600 8-CORE ...
Propriétés de l’article
Numéro d’article: 000216834
Type d’article: Dell Security Advisory
Dernière modification: 17 Aug 2023
Trouvez des réponses à vos questions auprès d’autres utilisateurs Dell
Services de support
Vérifiez si votre appareil est couvert par les services de support.