DSA-2025-072: Security Update for Dell PowerScale OneFS for Multiple Security Vulnerabilities
Samenvatting: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Dit artikel is van toepassing op
Dit artikel is niet van toepassing op
Dit artikel is niet gebonden aan een specifiek product.
Niet alle productversies worden in dit artikel vermeld.
Impact
High
Gegevens
|
Third-Party Component |
CVEs |
More information |
|---|---|---|
|
BIOS |
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985 |
|
| iDRAC | CVE-2023-52340, CVE-2024-42154 |
Getroffen producten en herstel
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F210 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F710 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F910 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|---|
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F210 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F710 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
|
CVE-2024-21853, CVE-2024-25565, CVE-2024-22185, CVE-2024-24985, CVE-2023-52340, CVE-2024-42154 |
PowerScale F910 |
PowerScale Node Firmware Package |
Versions prior to 12.4.2 |
Version 12.4.2 or later |
PowerScale OneFS Downloads Area |
Note:
- We encourage all customers to upgrade to the remediated versions, if an upgrade is not feasible, we recommend customers to review the CVE details further to more accurately determine potential risk to their environment.
- To identify which nodes require upgrading, please refer to the firmware assessment report. For instructions on completing the assessment and report, please refer to the "Run a firmware assessment" section in PowerScale Node Firmware Package 12.4.2 Release Notes documented in Firmware - PowerScale Info Hub.
- Due to the NFP installation issue with parallel upgrade, customers are advised not to perform parallel upgrades when upgrading from PowerScale OneFS versions lower than: 9.4.0.19, 9.5.1.0, 9.7.1.0, 9.8.0.1, 9.9.0.0.
Revisiegeschiedenis
|
Revision |
Date |
Description |
|---|---|---|
|
1.0 |
2025-02-11 |
Initial Release |
|
2.0 |
2025-07-23 |
Updated for enhance presentation |
Verwante informatie
Juridische verklaring van afstand
Getroffen producten
PowerScale F210, PowerScale F710, PowerScale F910Artikeleigenschappen
Artikelnummer: 000283880
Artikeltype: Dell Security Advisory
Laatst aangepast: 23 jul. 2025
Vind antwoorden op uw vragen via andere Dell gebruikers
Support Services
Controleer of uw apparaat wordt gedekt door Support Services.