DSA-2025-050: Dell PowerStore X Security Update for Multiple Vulnerabilities

Resumen: Dell PowerStore Family remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.
Consulte estos recursos

Impacto

High

Detalles

Third-party Component CVEs More Information
bind CVE-2024-1975, CVE-2024-1737

 

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
containerd CVE-2023-45288

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
giflib CVE-2023-48161, CVE-2022-28506, CVE-2021-40633

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
glibc CVE-2024-33601, CVE-2024-33602, CVE-2024-2961, CVE-2024-33600, CVE-2024-33599

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
hsqldb CVE-2022-41853

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
idna CVE-2024-3651

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
libgpg-erro0 CVE-2024-28180

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
libuv1 CVE-2023-50387, CVE-2023-50868, CVE-2023-6516, CVE-2023-4408, CVE-2023-5517

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
lxml CVE-2022-2309

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
krb5 CVE-2024-37371, CVE-2024-37370

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
OpenJDK CVE-2024-21131, CVE-2024-21140, CVE-2024-21144, CVE-2024-21147, CVE-2024-21138, CVE-2024-21145

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
OpenSSL CVE-2024-5535

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
pip CVE-2021-3572, CVE-2023-5752

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Python-pathlib2

Python-scandir		 CVE-2020-14343, CVE-2020-25659

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
Python-pycryptodome CVE-2023-52323

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
Python-requests CVE-2023-32681

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
xen CVE-2024-31146, CVE-2024-31145

See NVD link below for individual scores for each CVE. 

http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

Product Software/Firmware Affected Versions Remediated Versions Link
PowerStore 1000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-1000/drivers
PowerStore 3000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-3000/drivers
PowerStore 5000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-5000/drivers
PowerStore 7000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-7000/drivers
PowerStore 9000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-9000/drivers
Product Software/Firmware Affected Versions Remediated Versions Link
PowerStore 1000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-1000/drivers
PowerStore 3000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-3000/drivers
PowerStore 5000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-5000/drivers
PowerStore 7000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-7000/drivers
PowerStore 9000X PowerStoreX OS Versions prior to 3.2.1.5-2424458 Version 3.2.1.5-2424458 or later https://www.dell.com/support/home/product-support/product/powerstore-9000/drivers

Historial de revisiones

RevisionDateDescription
1.02025-01-28Initial Release
2.02025-02-10Added missing product tag
3.02025-02-11Added missing product tag

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

PowerStore 1000X, PowerStore 3000X, PowerStore 5000X, PowerStore 7000X, PowerStore 9000X, PowerStoreOS
Propiedades del artículo
Número del artículo: 000278110
Tipo de artículo: Dell Security Advisory
Última modificación: 11 feb 2025
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.