DSA-2025-050: Dell PowerStore X Security Update for Multiple Vulnerabilities

Obsah

Podrobný článok

Dosah

Dotknuté produkty a riešenie problému

História revízií

Súvisiace informácie

Legal Disclaimer

Dotknuté produkty

Poskytnutie spätnej väzby

Zhrnutie: Dell PowerStore Family remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Tento článok sa vzťahuje na Tento článok sa nevzťahuje na Tento článok nie je viazaný na žiadny konkrétny produkt. V tomto článku nie sú uvedené všetky verzie produktov.

Pozrite si ďalšie zdroje

Dosah

High

Podrobnosti

Third-party Component	CVEs	More Information
bind	CVE-2024-1975, CVE-2024-1737	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
containerd	CVE-2023-45288	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
giflib	CVE-2023-48161, CVE-2022-28506, CVE-2021-40633	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
glibc	CVE-2024-33601, CVE-2024-33602, CVE-2024-2961, CVE-2024-33600, CVE-2024-33599	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
hsqldb	CVE-2022-41853	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
idna	CVE-2024-3651	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
libgpg-erro0	CVE-2024-28180	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
libuv1	CVE-2023-50387, CVE-2023-50868, CVE-2023-6516, CVE-2023-4408, CVE-2023-5517	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
lxml	CVE-2022-2309	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
krb5	CVE-2024-37371, CVE-2024-37370	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
OpenJDK	CVE-2024-21131, CVE-2024-21140, CVE-2024-21144, CVE-2024-21147, CVE-2024-21138, CVE-2024-21145	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
OpenSSL	CVE-2024-5535	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
pip	CVE-2021-3572, CVE-2023-5752	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
Python-pathlib2 Python-scandir	CVE-2020-14343, CVE-2020-25659	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
Python-pycryptodome	CVE-2023-52323	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
Python-requests	CVE-2023-32681	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/
xen	CVE-2024-31146, CVE-2024-31145	See NVD link below for individual scores for each CVE. http://nvd.nist.gov/

Dell Technologies odporúča všetkým svojim zákazníkom, aby sa riadili nielen základným skóre CVSS, ale aj prechodným skóre a skóre závažnosti v konkrétnych prostrediach, na základe ktorého môžu vyhodnotiť celkové riziko vo vlastnom prostredí.

Dotknuté produkty a riešenie problému

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
PowerStore 1000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-1000/drivers
PowerStore 3000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-3000/drivers
PowerStore 5000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-5000/drivers
PowerStore 7000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-7000/drivers
PowerStore 9000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-9000/drivers

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
PowerStore 1000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-1000/drivers
PowerStore 3000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-3000/drivers
PowerStore 5000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-5000/drivers
PowerStore 7000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-7000/drivers
PowerStore 9000X	PowerStoreX OS	Versions prior to 3.2.1.5-2424458	Version 3.2.1.5-2424458 or later	https://www.dell.com/support/home/product-support/product/powerstore-9000/drivers

História revízií

Revision	Date	Description
1.0	2025-01-28	Initial Release
2.0	2025-02-10	Added missing product tag
3.0	2025-02-11	Added missing product tag

Súvisiace informácie

Legal Disclaimer

Dotknuté produkty

PowerStore 1000X, PowerStore 3000X, PowerStore 5000X, PowerStore 7000X, PowerStore 9000X, PowerStoreOS

Číslo článku: 000278110

Typ článku: Dell Security Advisory

Dátum poslednej úpravy: 11 feb 2025

Skontrolujte, či sa na vaše zariadenie vzťahujú služby podpory.

DSA-2025-050: Dell PowerStore X Security Update for Multiple Vulnerabilities

Zhrnutie: Dell PowerStore Family remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Dosah

Podrobnosti

Dotknuté produkty a riešenie problému

História revízií

Súvisiace informácie

Legal Disclaimer

Dotknuté produkty

Vlastnosti článku

Nájdite odpovede na svoje otázky od ostatných používateľov spoločnosti Dell

Služby podpory

Vlastnosti článku

Nájdite odpovede na svoje otázky od ostatných používateľov spoločnosti Dell

Služby podpory