DSA-2024-146: Security Update for Dell Secured Component Verification (SCV) Vulnerabilities
Podsumowanie: Dell Secured Component Verification (SCV) remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Ten artykuł dotyczy
Ten artykuł nie dotyczy
Ten artykuł nie jest powiązany z żadnym konkretnym produktem.
Nie wszystkie wersje produktu zostały zidentyfikowane w tym artykule.
Skutki
Critical
Szczegóły
| Third-party Component | CVEs | More Information |
|---|---|---|
| LibcURL | CVE-2018-0500, CVE-2018-14618, CVE-2018-16839, CVE-2018-16840, CVE-2018-16842, CVE-2018-16890, CVE-2019-5443, CVE-2020-8177, CVE-2020-8284, CVE-2020-8285, CVE-2021-22876, CVE-2021-22898, CVE-2021-22923 |
See NVD link below for individual scores for each CVE. https://nvd.nist.gov/  |
| OpenSSL 1.1.1n | CVE-2022-1292, CVE-2022-2068, CVE-2023-4807, CVE-2022-4450, CVE-2023-0215, CVE-2023-0464, CVE-2023-0286, CVE-2023-2650, CVE-2023-4304, CVE-2024-0727, CVE-2022-2097, CVE-2023-0465, CVE-2023-0466, CVE-2023-3817, CVE-2023-5678 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
Produkty, których dotyczy problem, i środki zaradcze
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell Secured Component Verification (SCV) | SCV for Microsoft Windows Server | Versions prior to 1.92.0 | Version 1.92.0 or later | https://www.dell.com/support/home/drivers/DriversDetails?driverId=05F3Y |
| Dell Secured Component Verification (SCV) | SCV for Linux Server | Versions prior to 1.92.0 | Version 1.92.0 or later | https://www.dell.com/support/home/drivers/DriversDetails?driverId=FC8C2 |
| Dell Secured Component Verification (SCV) | SCV for WinPE | Versions prior to 1.92.0 | Version 1.92.0 or later | https://www.dell.com/support/home/drivers/DriversDetails?driverId=RJDJM |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| Dell Secured Component Verification (SCV) | SCV for Microsoft Windows Server | Versions prior to 1.92.0 | Version 1.92.0 or later | https://www.dell.com/support/home/drivers/DriversDetails?driverId=05F3Y |
| Dell Secured Component Verification (SCV) | SCV for Linux Server | Versions prior to 1.92.0 | Version 1.92.0 or later | https://www.dell.com/support/home/drivers/DriversDetails?driverId=FC8C2 |
| Dell Secured Component Verification (SCV) | SCV for WinPE | Versions prior to 1.92.0 | Version 1.92.0 or later | https://www.dell.com/support/home/drivers/DriversDetails?driverId=RJDJM |
We strongly recommend upgrading your SCV software to the latest version. The latest version includes critical security fixes that are not available in earlier versions of SCV.
Security Update Release Schedule for Supported Versions of SCV: https://www.dell.com/support/kbdoc/000218852
Security Update Release Schedule for Supported Versions of SCV: https://www.dell.com/support/kbdoc/000218852
Historia zmian
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-04-01 | Initial release |
Powiązane informacje
Zastrzeżenie prawne
Produkty, których dotyczy problem
Secured Component Verification (SCV)Produkty
Secured Component Verification (SCV)Właściwości artykułu
Numer artykułu: 000223688
Typ artykułu: Dell Security Advisory
Ostatnia modyfikacja: 01 kwi 2024
Znajdź odpowiedzi na swoje pytania u innych użytkowników produktów Dell
Usługi pomocy technicznej
Sprawdź, czy Twoje urządzenie jest objęte usługą pomocy technicznej.