DSA-2024-080: Security Update for Dell PowerEdge T30/T40 Mini Tower Server for Tianocore EDK2 Vulnerabilities
Summary: Dell PowerEdge T30/T40 Mini Tower Server remediation is available for Tianocore EDK2 Vulnerabilities that could be exploited by malicious users to compromise the affected systems.
This article applies to
This article does not apply to
Impact
High
Details
| Third-party Component | CVEs | More Information |
|---|---|---|
| Tianocore EDK2 | CVE-2023-45229, CVE-2023-45230, CVE-2023-45231, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235 | Tianocore EDK2 Security Advisory |
Affected Products & Remediation
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| PowerEdge T30 | BIOS | Versions prior to 1.14.0 | Version 1.14.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t30/drivers |
| PowerEdge T40 | BIOS | Versions prior to 1.15.0 | Version 1.15.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t40/drivers |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| PowerEdge T30 | BIOS | Versions prior to 1.14.0 | Version 1.14.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t30/drivers |
| PowerEdge T40 | BIOS | Versions prior to 1.15.0 | Version 1.15.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t40/drivers |
Workarounds & Mitigations
None
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-02-20 | Initial release |
| 2.0 | 2024-06-13 | Updated for enhanced presentation with no changes to content |