DSA-2020-216: PowerFlex Rack Security Update for Multiple Third-Party Component Vulnerabilities
요약: DSA-2020-216: PowerFlex Rack Security Update for Multiple Third-Party Component Vulnerabilities
이 문서는 다음에 적용됩니다.
이 문서는 다음에 적용되지 않습니다.
이 문서는 특정 제품과 관련이 없습니다.
모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
영향
High
세부 정보
Summary:
Multiple components within Dell EMC PowerFlex Rack require a security update to address various vulnerabilities.
| Third-party Component | CVE(s) | More information |
| iDRAC version 4.20.20.20 | CVE-2020-5366 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
| VMware ESXi 6.5 EP 20 16389870 (Build 16389870) and ESXi 6.7 EP 15 Build Number 16316930 | CVE-2020-3967 | VMSA-2020-0011 VMSA-2020-0012 VMSA-2020-0014 |
| CVE-2020-3968 | ||
| CVE-2020-3966 | ||
| CVE-2020-3965 | ||
| CVE-2020-3963 | ||
| CVE-2020-3964 | ||
| CVE-2020-3960 | ||
| CVE-2020-3959 | ||
| GRUB Bootloader Vulnerability | CVE-2020-10713 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
| Third-party Component | CVE(s) | More information |
| iDRAC version 4.20.20.20 | CVE-2020-5366 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
| VMware ESXi 6.5 EP 20 16389870 (Build 16389870) and ESXi 6.7 EP 15 Build Number 16316930 | CVE-2020-3967 | VMSA-2020-0011 VMSA-2020-0012 VMSA-2020-0014 |
| CVE-2020-3968 | ||
| CVE-2020-3966 | ||
| CVE-2020-3965 | ||
| CVE-2020-3963 | ||
| CVE-2020-3964 | ||
| CVE-2020-3960 | ||
| CVE-2020-3959 | ||
| GRUB Bootloader Vulnerability | CVE-2020-10713 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
영향을 받는 제품 및 문제 해결
Affected Products:
Dell EMC PowerFlex Rack versions prior to 3.3.8.1
Dell EMC PowerFlex Rack versions prior to 3.4.3.1
Dell EMC PowerFlex Rack versions prior to 3.5.3.1
Resolution:
The following Dell EMC PowerFlex Rack releases contain a resolution to these vulnerabilities:
Dell EMC recommends all customers upgrade at the earliest opportunity.
For RCM release information: https://cpsdocs.dellemc.com/rcm/#/home.
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
Dell EMC PowerFlex Rack versions prior to 3.3.8.1
Dell EMC PowerFlex Rack versions prior to 3.4.3.1
Dell EMC PowerFlex Rack versions prior to 3.5.3.1
Resolution:
The following Dell EMC PowerFlex Rack releases contain a resolution to these vulnerabilities:
- Dell EMC PowerFlex Rack version 3.3.8.1
- Dell EMC PowerFlex Rack version 3.4.3.1
- Dell EMC PowerFlex Rack version 3.5.3.1
Dell EMC recommends all customers upgrade at the earliest opportunity.
For RCM release information: https://cpsdocs.dellemc.com/rcm/#/home.
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
Affected Products:
Dell EMC PowerFlex Rack versions prior to 3.3.8.1
Dell EMC PowerFlex Rack versions prior to 3.4.3.1
Dell EMC PowerFlex Rack versions prior to 3.5.3.1
Resolution:
The following Dell EMC PowerFlex Rack releases contain a resolution to these vulnerabilities:
Dell EMC recommends all customers upgrade at the earliest opportunity.
For RCM release information: https://cpsdocs.dellemc.com/rcm/#/home.
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
Dell EMC PowerFlex Rack versions prior to 3.3.8.1
Dell EMC PowerFlex Rack versions prior to 3.4.3.1
Dell EMC PowerFlex Rack versions prior to 3.5.3.1
Resolution:
The following Dell EMC PowerFlex Rack releases contain a resolution to these vulnerabilities:
- Dell EMC PowerFlex Rack version 3.3.8.1
- Dell EMC PowerFlex Rack version 3.4.3.1
- Dell EMC PowerFlex Rack version 3.5.3.1
Dell EMC recommends all customers upgrade at the earliest opportunity.
For RCM release information: https://cpsdocs.dellemc.com/rcm/#/home.
For RCM download: https://vce.flexnetoperations.com/control/vcec/product?plneID=740417
관련 정보
법적 고지 사항
해당 제품
VxFlex Product Family제품
Product Security Information, VxFlex Product Family문서 속성
문서 번호: 000001679
문서 유형: Dell Security Advisory
마지막 수정 시간: 10 4월 2021
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.