DSA-2020-235: Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

本文章適用於 本文章不適用於 本文無關於任何特定產品。 本文未識別所有產品版本。
查看其他資源

影響

Critical

詳細資料

Multiple components within Dell EMC VxRail Appliance require a security update to address various vulnerabilities.

Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Third-party Component CVE(s) More information
VMware ESXi 7.0 U1 CVE-2020-3981 VMSA-2020-0023
CVE-2020-3982
CVE-2020-3992
Oracle Critical Patch Update CVE-2020-14583 Oracle Critical Patch Update - July 2020
CVE-2020-14593
CVE-2020-14562
CVE-2020-14621
CVE-2020-14556
CVE-2020-14581
CVE-2020-14577
CVE-2020-14573
SUSE Enterprise Linux Server CVE-2020-10713 Security Vulnerability: "Boothole" grub2 UEFI secure boot lockdown bypass
SUSE Enterprise Linux Server 15 SP1 Updates
Intel Platform Updates CVE-2020-0527 DSA-2020-147: Dell EMC Server Platform Security Advisory for the 2020.1 Intel Platform Updates (June 2020) - Intel SSD
JQuery CVE-2020-11022
CVE-2019-11358
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.  

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search
Dell Technologies 建議所有客戶不僅要參考 CVSS 基本分數,也要將可能會影響與特定安全漏洞相關之潛在嚴重性的所有相關暫時和環境分數納入考量。

受影響的產品與補救措施

Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



Affected products:     
Dell EMC VxRail Appliance 7.x versions prior to 7.0.100


Remediation:     
The following Dell EMC VxRail Appliance release addresses these vulnerabilities:      

  • Dell EMC VxRail Appliance 7.0.100

Dell EMC recommends all customers upgrade at the earliest opportunity.



相關資訊

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

法律免責聲明

受影響的產品

VxRail Software

產品

Product Security Information, VxRail Appliance Family, VxRail Appliance Series, VxRail Software
文章屬性
文章編號: 000180948
文章類型: Dell Security Advisory
上次修改時間: 22 5月 2021
向其他 Dell 使用者尋求您問題的答案
支援服務
檢查您的裝置是否在支援服務的涵蓋範圍內。