Omitir para ir al contenido principal
Cerrar

Bienvenido a Dell

Mi cuenta
  • Hacer pedidos rápida y fácilmente
  • Ver pedidos y realizar seguimiento al estado del envío
  • Cree y acceda a una lista de sus productos
Iniciar sesión Crear una cuenta Clientes Premier Iniciar sesión en el programa para partners
Contáctenos

DSA-2020-246: Dell EMC Server Platform Security Advisory for the monthly and 2020.2 Intel Platform Updates (November 2020)

Resumen: Dell EMC Server Platform Security Advisory for the monthly and 2020.2 Intel Platform Updates (November 2020) contains remediation for Dell EMC PowerEdge server that may be exploited by malicious users to compromise the affected system. ...

Este artículo se aplica a   Este artículo no se aplica a 
Consulte recursos para

Impacto

High

Detalles

.

Details: 
Updates are available to address the following security vulnerabilities.
CVE-2020-0587    CVE-2020-0588    CVE-2020-0590    CVE-2020-0591    CVE-2020-0592
CVE-2020-0593
CVE-2020-8705    CVE-2020-8744    CVE-2020-8755
CVE-2020-8696
CVE-2020-8695    CVE-2020-8694
CVE-2020-8738    CVE-2020-8739    CVE-2020-8740    CVE-2020-8764

Customers should also review their OS vendor’s Security Advisory for information, to ensure appropriate vulnerability identification and patch/configuration measures to be used in conjunction with the updates provided by Dell for the most effective mitigation.

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.
Details: 
Updates are available to address the following security vulnerabilities.
CVE-2020-0587    CVE-2020-0588    CVE-2020-0590    CVE-2020-0591    CVE-2020-0592
CVE-2020-0593
CVE-2020-8705    CVE-2020-8744    CVE-2020-8755
CVE-2020-8696
CVE-2020-8695    CVE-2020-8694
CVE-2020-8738    CVE-2020-8739    CVE-2020-8740    CVE-2020-8764

Customers should also review their OS vendor’s Security Advisory for information, to ensure appropriate vulnerability identification and patch/configuration measures to be used in conjunction with the updates provided by Dell for the most effective mitigation.

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.
Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

Resolution:   
The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.

We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.

Visit the Drivers and Downloads site for updates on the applicable products. Note, the following list of impacted products with released BIOS updates are linked. To learn more, visit the Dell Knowledge Base article Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.


Dell EMC Server Products Affected

Product BIOS Update Version (or greater) Release Date / Expected Release Date

R740, R740xd, R640, R940

2.9.4

11/20/20

C6420

2.9.3

11/10/20

R540, R440, T440

2.9.3

11/10/20

FC640, M640, M640 VRTX

2.9.3

11/10/20

T640

2.9.4

 11/20/20

C4140

2.9.3

11/10/20

R840, R940XA

2.9.4

 11/20/20

MX740c

2.9.4

 11/20/20

MX840c

2.9.4

 11/20/20

R340, R240, T340, T140

2.4.1

11/11/20

R740xd2

2.9.3

11/10/20

T40

1.4.0

11/20/20

R730, R730xd, R630

 

1/20/21

C4130

 

1/26/21

R930

 

Feb 2021

M630, M630p, FC630

2.12.0

1/8/21

FC430

2.12.0

1/8/21

M830, M830p, FC830

2.12.0

1/8/21

T630

2.12.0

1/11/21

R530, R430, T430

2.12.0

1/11/21

T130, R230, T330, R330

2.11.0

1/11/21

R830

1.12.0

1/11/21

C6320

2.12.0

1/11/21

T30

1.5.0

1/11/21

R530xd

N/A

Not impacted

Resolution:   
The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.

We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.

Visit the Drivers and Downloads site for updates on the applicable products. Note, the following list of impacted products with released BIOS updates are linked. To learn more, visit the Dell Knowledge Base article Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.


Dell EMC Server Products Affected

Product BIOS Update Version (or greater) Release Date / Expected Release Date

R740, R740xd, R640, R940

2.9.4

11/20/20

C6420

2.9.3

11/10/20

R540, R440, T440

2.9.3

11/10/20

FC640, M640, M640 VRTX

2.9.3

11/10/20

T640

2.9.4

 11/20/20

C4140

2.9.3

11/10/20

R840, R940XA

2.9.4

 11/20/20

MX740c

2.9.4

 11/20/20

MX840c

2.9.4

 11/20/20

R340, R240, T340, T140

2.4.1

11/11/20

R740xd2

2.9.3

11/10/20

T40

1.4.0

11/20/20

R730, R730xd, R630

 

1/20/21

C4130

 

1/26/21

R930

 

Feb 2021

M630, M630p, FC630

2.12.0

1/8/21

FC430

2.12.0

1/8/21

M830, M830p, FC830

2.12.0

1/8/21

T630

2.12.0

1/11/21

R530, R430, T430

2.12.0

1/11/21

T130, R230, T330, R330

2.11.0

1/11/21

R830

1.12.0

1/11/21

C6320

2.12.0

1/11/21

T30

1.5.0

1/11/21

R530xd

N/A

Not impacted

Soluciones alternativas y mitigaciones

None

Historial de revisiones

RevisionDateDescription
1.02020-12-09Initial Release

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

Dell XC6320 Hyper-converged Appliance, Dell EMC XC Series XC6420 Appliance, Storage Spaces Direct R440 Ready Node, Storage Spaces Direct R740xd Ready Node, Storage Spaces Direct R740xd2 Ready node, PowerEdge C4130, Poweredge C4140, PowerEdge c6320 , PowerEdge c6320p, PowerEdge C6420, Poweredge FC430, Poweredge FC630, PowerEdge FC640, Poweredge FC830, PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge M640, PowerEdge M640 (for PE VRTX), PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge MX740C, PowerEdge MX840C, PowerEdge R230, PowerEdge R240, PowerEdge R330, PowerEdge R340, PowerEdge R430, PowerEdge R440, PowerEdge R530, PowerEdge R530xd, PowerEdge R540, PowerEdge R630, PowerEdge R640, PowerEdge R730, PowerEdge R730xd, PowerEdge R740, PowerEdge R740XD, PowerEdge R740XD2, PowerEdge R830, PowerEdge R840, PowerEdge R930, PowerEdge R940, PowerEdge R940xa, PowerEdge T130, PowerEdge T140, PowerEdge T30, PowerEdge T330, PowerEdge T340, PowerEdge T40, PowerEdge T430, PowerEdge T440, PowerEdge T630, PowerEdge T640, VxFlex Ready Node R740xd, Dell EMC vSAN C6420 Ready Node, Dell EMC vSAN R440 Ready Node, Dell EMC vSAN R740xd Ready Node, PowerFlex appliance R740XD, PowerFlex appliance R840, VxFlex Ready Node R840 ...