DSA-2026-127: Security Update for Dell PowerScale OneFS Multiple Third-Party Component Vulnerabilities
Сводка: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Данная статья применяется к
Данная статья не применяется к
Эта статья не привязана к какому-либо конкретному продукту.
В этой статье указаны не все версии продуктов.
Влияние
Critical
Подробные сведения
| Third-Party Component | CVEs | More information |
| AMI AptioV | CVE-2024-42444, CVE-2024-7344 | https://nvd.nist.gov/vuln/search |
| Dell PowerEdge Server BIOS | CVE-2024-45332, CVE-2024-28047, CVE-2024-28956 | DSA-2025-041, DSA-2025-156 |
| OpenSSL | CVE-2022-4450, CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465, CVE-2023-6237, CVE-2024-5535, CVE-2024-6119, CVE-2024-13176 | https://nvd.nist.gov/vuln/search |
| Tianocore EDK2 | CVE-2024-38796 | https://nvd.nist.gov/vuln/search |
Затронутые продукты и исправление
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| PowerScale A300 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| PowerScale A3000 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| PowerScale H700 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| PowerScale H7000 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| PowerScale A300 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| PowerScale A3000 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| PowerScale H700 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
| PowerScale H7000 | PowerScale Node Firmware Package | Versions prior to 13.2.3 | Version 13.2.3 or later | PowerScale OneFS Downloads Area |
Notes:
- We encourage all customers to upgrade to the remediated versions. If an upgrade is not feasible, customers should review the CVE details to determine potential risk to their environments.
- To identify which nodes require upgrading, please refer to the firmware assessment report. For instructions on completing the assessment and report, please refer to the "Run a firmware assessment" section in PowerScale Node Firmware Package 13.2.3 Release Notes documented in Firmware - PowerScale Info Hub.
Временные решения и снижение риска
None
История изменений
| Revision | Date | Description |
| 1.0 | 2026-05-06 | Initial Release |
Связанная информация
Правовая оговорка
Затронутые продукты
Isilon, PowerScale OneFS, PowerScale Archive A300, PowerScale Archive A3000, PowerScale Hybrid H700, PowerScale Hybrid H7000Свойства статьи
Номер статьи: 000461405
Тип статьи: Dell Security Advisory
Последнее изменение: 05 May 2026
Получите ответы на свои вопросы от других пользователей Dell
Услуги технической поддержки
Проверьте, распространяются ли на ваше устройство услуги технической поддержки.