DSA-2026-127: Security Update for Dell PowerScale OneFS Multiple Third-Party Component Vulnerabilities

摘要: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

法律免责声明

受影响的产品

提供反馈

本文适用于本文不适用于本文并非针对某种特定的产品。本文并非包含所有产品版本。

查看其他资源

影响

Critical

详情

Third-Party Component	CVEs	More information
AMI AptioV	CVE-2024-42444, CVE-2024-7344	https://nvd.nist.gov/vuln/search
Dell PowerEdge Server BIOS	CVE-2024-45332, CVE-2024-28047, CVE-2024-28956	DSA-2025-041, DSA-2025-156
OpenSSL	CVE-2022-4450, CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465, CVE-2023-6237, CVE-2024-5535, CVE-2024-6119, CVE-2024-13176	https://nvd.nist.gov/vuln/search
Tianocore EDK2	CVE-2024-38796	https://nvd.nist.gov/vuln/search

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数，这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
PowerScale A300	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area
PowerScale A3000	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area
PowerScale H700	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area
PowerScale H7000	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
PowerScale A300	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area
PowerScale A3000	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area
PowerScale H700	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area
PowerScale H7000	PowerScale Node Firmware Package	Versions prior to 13.2.3	Version 13.2.3 or later	PowerScale OneFS Downloads Area

Notes:

We encourage all customers to upgrade to the remediated versions. If an upgrade is not feasible, customers should review the CVE details to determine potential risk to their environments.
To identify which nodes require upgrading, please refer to the firmware assessment report. For instructions on completing the assessment and report, please refer to the "Run a firmware assessment" section in PowerScale Node Firmware Package 13.2.3 Release Notes documented in Firmware - PowerScale Info Hub.

解决方法和缓解措施

None

修订历史记录

Revision	Date	Description
1.0	2026-05-06	Initial Release

法律免责声明

受影响的产品

Isilon, PowerScale OneFS, PowerScale Archive A300, PowerScale Archive A3000, PowerScale Hybrid H700, PowerScale Hybrid H7000

文章编号: 000461405

文章类型: Dell Security Advisory

上次修改时间: 05 5月 2026

DSA-2026-127: Security Update for Dell PowerScale OneFS Multiple Third-Party Component Vulnerabilities

摘要: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

相关信息

法律免责声明

受影响的产品

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

DSA-2026-127: Security Update for Dell PowerScale OneFS Multiple Third-Party Component Vulnerabilities

摘要: Dell PowerScale OneFS remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

详细文章

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务