Article Number: 000222227
DSA-2024-081: Security Update for Dell PowerEdge T30/T40 Mini Tower Server for Tianocore EDK2 Vulnerabilities
Summary: Dell PowerEdge T30/T40 Mini Tower Server remediation is available for Tianocore EDK2 Vulnerabilities that could be exploited by malicious users to compromise the affected systems.
Article Content
Impact
Medium
Details
| Third-party Component | CVEs | More Information |
|---|---|---|
| Tianocore EDK2 | CVE-2022-36763, CVE-2022-36764, CVE-2022-36765 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/  |
Affected Products and Remediation
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| PowerEdge T30 | BIOS | Versions prior to 1.14.0 | Version 1.14.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t30/drivers |
| PowerEdge T40 | BIOS | Versions prior to 1.14.0 | Version 1.14.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t40/drivers |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| PowerEdge T30 | BIOS | Versions prior to 1.14.0 | Version 1.14.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t30/drivers |
| PowerEdge T40 | BIOS | Versions prior to 1.14.0 | Version 1.14.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t40/drivers |
Workarounds and Mitigations
None
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-02-20 | Initial release |
| 2.0 | 2024-06-13 | Updated for enhanced presentation with no changes to content |
Related Information
Legal Information
Article Properties
Affected Product
PowerEdge T30, PowerEdge T40
Last Published Date
13 Jun 2024
Article Type
Dell Security Advisory