Dell (Dell PowerEdge Server BIOS, Dell Precision Rack BIOS) Security Update Recommendation
Overview
Dell has released security updates to fix vulnerabilities in its products. users of affected products are advised to update to the latest version.
Affected Products
PowerEdge R660 BIOS versions prior to 1.5.6
PowerEdge R760 BIOS versions prior to 1.5.6
PowerEdge C6620 BIOS prior to 1.5.6
PowerEdge MX760c BIOS prior to 1.5.6
PowerEdge R860 BIOS prior to 1.5.6
PowerEdge R960 BIOS prior to 1.5.6
PowerEdge HS5610 BIOS prior to 1.5.6
PowerEdge HS5620 BIOS prior to 1.5.6
PowerEdge R660xs BIOS prior to 1.5.6
PowerEdge R760xs BIOS prior to 1.5.6
PowerEdge R760xd2 BIOS prior to 1.5.6
PowerEdge T560 BIOS prior to 1.5.6
PowerEdge R760xa BIOS prior to 1.1.3
PowerEdge XE9680 BIOS prior to 1.1.3
PowerEdge XR5610 BIOS versions prior to 1.1.4
PowerEdge XR8610t BIOS prior to 1.1.3
PowerEdge XR8620t BIOS versions prior to 1.1.3
PowerEdge XR7620 BIOS versions prior to 1.5.6
PowerEdge XE8640 BIOS versions prior to 1.2.5
PowerEdge XE9640 BIOS versions prior to 1.3.6
PowerEdge R6615 BIOS versions prior to 1.4.6
PowerEdge R7615 BIOS prior to 1.4.6
PowerEdge R6625 BIOS prior to 1.4.6
PowerEdge R7625 BIOS versions prior to 1.4.6
PowerEdge R650 BIOS versions prior to 1.11.2
PowerEdge R750 BIOS prior to 1.11.2
PowerEdge R750XA BIOS versions prior to 1.11.2
PowerEdge C6520 BIOS prior to 1.11.2
PowerEdge MX750C BIOS prior to 1.11.2
PowerEdge R550 BIOS prior to 1.11.2
PowerEdge R450 BIOS prior to 1.11.2
PowerEdge R650XS BIOS prior to 1.11.2
PowerEdge R750XS BIOS versions prior to 1.11.2
PowerEdge XR11 BIOS versions prior to 1.11.2
PowerEdge XR12 BIOS versions prior to 1.11.2
PowerEdge T150 BIOS versions prior to 1.7.3
PowerEdge T350 BIOS versions prior to 1.7.3
PowerEdge R250 BIOS versions prior to 1.7.3
PowerEdge R350 BIOS prior to 1.7.3
PowerEdge XR4510c BIOS versions prior to 1.12.1
PowerEdge XR4520c BIOS prior to 1.12.1
PowerEdge R6515 BIOS versions prior to 2.12.4
PowerEdge R6525 BIOS prior to 2.12.4
PowerEdge R7515 BIOS prior to 2.12.4
PowerEdge R7525 BIOS prior to 2.12.4
PowerEdge C6525 BIOS prior to 2.12.4
PowerEdge XE8545 BIOS prior to 2.12.4
PowerEdge R740 BIOS versions prior to 2.19.1
PowerEdge R740XD BIOS prior to 2.19.1
PowerEdge R640 BIOS prior to 2.19.1
PowerEdge R940 BIOS prior to 2.19.1
PowerEdge R540 BIOS prior to 2.19.1
PowerEdge R440 BIOS prior to 2.19.1
PowerEdge T440 BIOS prior to 2.19.1
PowerEdge XR2 BIOS prior to 2.19.1
PowerEdge R740XD2 BIOS prior to 2.19.1
PowerEdge R840 BIOS prior to 2.19.1
PowerEdge R940XA BIOS prior to 2.19.1
PowerEdge T640 BIOS prior to 2.19.1
PowerEdge C6420 BIOS prior to 2.19.1
PowerEdge FC640 BIOS prior to 2.19.1
PowerEdge M640 BIOS prior to 2.19.1
PowerEdge M640 (for PE VRTX) BIOS prior to 2.19.1
PowerEdge MX740C BIOS versions prior to 2.19.1
PowerEdge MX840C BIOS prior to 2.19.1
PowerEdge C4140 BIOS prior to 2.19.1
DSS 8440 BIOS versions prior to 2.19.0
PowerEdge XE2420 BIOS prior to 2.19.0
PowerEdge XE7420 BIOS prior to 2.19.0
PowerEdge XE7440 BIOS prior to 2.19.0
PowerEdge T140 BIOS prior to 2.14.1
PowerEdge T340 BIOS prior to 2.14.1
PowerEdge R240 BIOS prior to 2.14.1
PowerEdge R340 BIOS prior to 2.14.1
PowerEdge R6415 BIOS versions prior to 1.20.0
PowerEdge R7415 BIOS versions prior to 1.20.0
PowerEdge R7425 BIOS prior to 1.20.0
Dell EMC Storage NX3240 BIOS prior to 2.19.1
Dell EMC Storage NX3340 BIOS prior to 2.19.1
Dell EMC NX440 BIOS prior to 2.14.1
Dell EMC XC Core XC450 BIOS prior to 1.11.2
Dell EMC XC Core XC650 BIOS prior to 1.11.2
Dell EMC XC Core XC750 BIOS prior to 1.11.2
Dell EMC XC Core XC750xa BIOS prior to 1.11.2
Dell EMC XC Core XC6520 BIOS prior to 1.11.2
Dell EMC XC Core 6420 System BIOS prior to 2.19.1
Dell EMC XC Core XC640 System BIOS prior to 2.19.1
Dell EMC XC Core XC740xd System BIOS prior to 2.19.1
Dell EMC XC Core XC740xd2 System BIOS prior to 2.19.1
Dell EMC XC Core XC940 System BIOS prior to 2.19.1
Dell EMC XC Core XCXR2 System BIOS prior to 2.19.1
Dell EMC XC Core XC7525 System BIOS prior to 2.12.4
Resolved Vulnerabilities
Improper management security vulnerability that can lead to privilege escalation in the Dell PowerEdge Server BIOS and Dell Precision Rack BIOS (CVE-2024-0172)
Vulnerability Patches
vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
PowerEdge R660 BIOS version 1.5.6
PowerEdge R760 BIOS version 1.5.6
PowerEdge C6620 BIOS version 1.5.6
PowerEdge MX760c BIOS 1.5.6 Revision
PowerEdge R860 BIOS 1.5.6 Revision
PowerEdge R960 BIOS 1.5.6 revision
PowerEdge HS5610 BIOS 1.5.6 Revision
PowerEdge HS5620 BIOS 1.5.6 Revision
PowerEdge R660xs BIOS 1.5.6
PowerEdge R760xs BIOS 1.5.6 Version
PowerEdge R760xd2 BIOS 1.5.6 Version
PowerEdge T560 BIOS Version 1.5.6
PowerEdge R760xa BIOS version 1.1.3
PowerEdge XE9680 BIOS version 1.1.3
PowerEdge XR5610 BIOS version 1.1.4
PowerEdge XR8610t BIOS Version 1.1.3
PowerEdge XR8620t BIOS Version 1.1.3
PowerEdge XR7620 BIOS version 1.5.6
PowerEdge XE8640 BIOS Version 1.2.5
PowerEdge XE9640 BIOS version 1.3.6
PowerEdge R6615 BIOS Version 1.4.6
PowerEdge R7615 BIOS Version 1.4.6
PowerEdge R6625 BIOS 1.4.6 Revision
PowerEdge R7625 BIOS 1.4.6 Revision
PowerEdge R650 BIOS Version 1.11.2
PowerEdge R750 BIOS Version 1.11.2
PowerEdge R750XA BIOS version 1.11.2
PowerEdge C6520 BIOS 1.11.2 Revision
PowerEdge MX750C BIOS 1.11.2 Revision
PowerEdge R550 BIOS 1.11.2 Revision
PowerEdge R450 BIOS 1.11.2 Version
PowerEdge R650XS BIOS Version 1.11.2
PowerEdge R750XS BIOS Version 1.11.2
PowerEdge XR11 BIOS Version 1.11.2
PowerEdge XR12 BIOS Version 1.11.2
PowerEdge T150 BIOS version 1.7.3
PowerEdge T350 BIOS Version 1.7.3
PowerEdge R250 BIOS Version 1.7.3
PowerEdge R350 BIOS Version 1.7.3
PowerEdge XR4510c BIOS version 1.12.1
PowerEdge XR4520c BIOS Version 1.12.1
PowerEdge R6515 BIOS version 2.12.4
PowerEdge R6525 BIOS version 2.12.4
PowerEdge R7515 BIOS 2.12.4 revision
PowerEdge R7525 BIOS 2.12.4 revision
PowerEdge C6525 BIOS 2.12.4 Revision
PowerEdge XE8545 BIOS 2.12.4 Revision
PowerEdge R740 BIOS version 2.19.1
PowerEdge R740XD BIOS Version 2.19.1
PowerEdge R640 BIOS Version 2.19.1
PowerEdge R940 BIOS Version 2.19.1
PowerEdge R540 BIOS Version 2.19.1
PowerEdge R440 BIOS Version 2.19.1
PowerEdge T440 BIOS version 2.19.1
PowerEdge XR2 BIOS version 2.19.1
PowerEdge R740XD2 BIOS 2.19.1 Revision
PowerEdge R840 BIOS Version 2.19.1
PowerEdge R940XA BIOS 2.19.1 Revision
PowerEdge T640 BIOS 2.19.1 Revision
PowerEdge C6420 BIOS 2.19.1 revision
PowerEdge FC640 BIOS 2.19.1 revision
PowerEdge M640 BIOS 2.19.1 revision
PowerEdge M640 (for PE VRTX) BIOS 2.19.1 revision
PowerEdge MX740C BIOS version 2.19.1
PowerEdge MX840C BIOS version 2.19.1
PowerEdge C4140 BIOS 2.19.1 revision
DSS 8440 BIOS version 2.19.0
PowerEdge XE2420 BIOS version 2.19.0
PowerEdge XE7420 BIOS version 2.19.0
PowerEdge XE7440 BIOS 2.19.0 Revision
PowerEdge T140 BIOS version 2.14.1
PowerEdge T340 BIOS version 2.14.1
PowerEdge R240 BIOS Version 2.14.1
PowerEdge R340 BIOS Version 2.14.1
PowerEdge R6415 BIOS version 1.20.0
PowerEdge R7415 BIOS Version 1.20.0
PowerEdge R7425 BIOS version 1.20.0
Dell EMC Storage NX3240 BIOS version 2.19.1
Dell EMC Storage NX3340 BIOS version 2.19.1
Dell EMC NX440 BIOS version 2.14.1
Dell EMC XC Core XC450 BIOS version 1.11.2
Dell EMC XC Core XC650 BIOS version 1.11.2
Dell EMC XC Core XC750 BIOS 1.11.2 version
Dell EMC XC Core XC750xa BIOS 1.11.2 version
Dell EMC XC Core XC6520 BIOS 1.11.2 version
Dell EMC XC Core 6420 System BIOS 2.19.1 version
Dell EMC XC Core XC640 System BIOS 2.19.1 version
Dell EMC XC Core XC740xd System BIOS 2.19.1 version
Dell EMC XC Core XC740xd2 System BIOS 2.19.1 Revision
Dell EMC XC Core XC940 System BIOS version 2.19.1
Dell EMC XC Core XCXR2 System BIOS 2.19.1 Revision
Dell EMC XC Core XC7525 System BIOS 2.12.4 version
Referenced Sites
[1] CVE-2024-0172 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-0172
[2] DSA-2024-035: Security Update for Dell PowerEdge Server BIOS for an Improper Privilege Management Security Vulnerability