Multiple vulnerabilities in Dell PowerEdge Server



Risk Medium
Patch available YES
Number of vulnerabilities 13
CVE-ID CVE-2021-26348
CVE-2021-26342
CVE-2021-26350
CVE-2021-26312
CVE-2021-26364
CVE-2021-26349
CVE-2021-26388
CVE-2021-26372
CVE-2021-26378
CVE-2021-26375
CVE-2021-26376
CVE-2021-26347
CVE-2021-26373
CWE-ID CWE-399
CWE-367
CWE-787
CWE-119
CWE-254
CWE-125
CWE-20
Exploitation vector Network
Public exploit N/A
Vulnerable software
 R7425
Server applications / Other server solutions

R7415
Server applications / Other server solutions

R6415
Server applications / Other server solutions

XE8545
Server applications / Other server solutions

C6525
Server applications / Other server solutions

R7525
Server applications / Other server solutions

R6525
Server applications / Other server solutions

R7515
Server applications / Other server solutions

R6515
Server applications / Other server solutions

Vendor Dell

Security Bulletin

This security bulletin contains information about 13 vulnerabilities.

1) Resource management error

EUVDB-ID: #VU63685

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26348

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU). A local user can force the IO device into writing data to memory it should not be able to access.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Resource management error

EUVDB-ID: #VU63686

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26342

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to the CPU may fail to flush the Translation Lookaside Buffer (TLB) in SEV guest VMs. A local user can execute a particular sequence of operations that includes creation of a new virtual machine control block (VMCB) and disclose the SEV guest memory contents.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Time-of-check Time-of-use (TOCTOU) Race Condition

EUVDB-ID: #VU63691

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26350

CWE-ID: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition in the System Management Unit (SMU). A local user can obtain and manipulate the address of a message port register and perform a denial of service attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Out-of-bounds write

EUVDB-ID: #VU63690

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26312

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error caused by failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU). A local user can force an IO device to write to memory it should not be able to access and execute arbitrary code with elevated privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Buffer overflow

EUVDB-ID: #VU63689

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26364

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in an SMU mailbox register. A local user can force SMU to read outside of the SRAM address range and perform a denial of service attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Security features bypass

EUVDB-ID: #VU63688

Risk: Medium

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-26349

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows an attacker to compromise the guest OS.

The vulnerability exists due to failure to assign a new report ID to an imported guest. This can result in an SEV-SNP guest VM being tricked into trusting a dishonest Migration Agent (MA).

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Out-of-bounds read

EUVDB-ID: #VU63687

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26388

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in the BIOS directory that allows for searches to read beyond the directory table copy in RAM. A local user can perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Buffer overflow

EUVDB-ID: #VU63683

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26372

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in System Management Unit (SMU). A local user can trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Buffer overflow

EUVDB-ID: #VU63682

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26378

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in System Management Unit (SMU). A local user can trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Buffer overflow

EUVDB-ID: #VU63681

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26375

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in System Management Unit (SMU). A local user can trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Input validation error

EUVDB-ID: #VU63680

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26376

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in System Management Unit (SMU) FeatureConfig. A local user can re-enable certain features, which can lead to denial of service.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Time-of-check Time-of-use (TOCTOU) Race Condition

EUVDB-ID: #VU63679

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26347

CWE-ID: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition in the System Management Unit (SMU). A local user can force the DMA (Direct Memory Access) to reference an invalid DRAM address and perform a denial of service attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Buffer overflow

EUVDB-ID: #VU63678

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-26373

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in the System Management Unit (SMU). A local user can trigger a system voltage malfunction and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

R7425: before 1.18.0

R7415: before 1.18.0

R6415: before 1.18.0

XE8545: before 2.6.6

C6525: before 2.6.7

R7525: before 2.6.6

R6525: before 2.6.6

R7515: before 2.6.6

R6515: before 2.6.6

CPE2.3 External links

https://www.dell.com/support/kbdoc/en-us/000199269/dsa-2022-126-dell-poweredge-server-security-updates-for-amd-server-vulnerabilities


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###