DSA-2020-235: Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

本文适用于 本文不适用于 本文并非针对某种特定的产品。 本文并非包含所有产品版本。
查看其他资源

影响

Critical

详情

Multiple components within Dell EMC VxRail Appliance require a security update to address various vulnerabilities.

Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数,这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



相关信息

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

法律免责声明

受影响的产品

VxRail Software

产品

Product Security Information, VxRail Appliance Family, VxRail Appliance Series, VxRail Software
文章属性
文章编号: 000180948
文章类型: Dell Security Advisory
上次修改时间: 22 5月 2021
从其他戴尔用户那里查找问题的答案
支持服务
检查您的设备是否在支持服务涵盖的范围内。