Impact
Medium
Details
Updates are available to address the following security vulnerabilities:
Intel-SA-00233
: Intel Microarchitectural Data Sampling Vulnerabilities
- CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-1109
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at
http://nvd.nist.gov/home.cfm.
To search for a particular CVE, use the database’s search utility at
http://web.nvd.nist.gov/view/vuln/search
Updates are available to address the following security vulnerabilities:
Intel-SA-00233
: Intel Microarchitectural Data Sampling Vulnerabilities
- CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-1109
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at
http://nvd.nist.gov/home.cfm.
To search for a particular CVE, use the database’s search utility at
http://web.nvd.nist.gov/view/vuln/search
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.
Affected Products and Remediation
Affected products:
Dell EMC Networking (see Resolution section below for complete list of affected products)
Resolution:
The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.
There are two essential components that need to be applied to mitigate the above-mentioned vulnerabilities:
1. Apply the firmware update listed in the Dell EMC Networking Products Affected section below.
2. Apply the applicable operating system patch. This is required to mitigate the
Intel-SA-00233
related vulnerabilities.
We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.
Please visit the
Drivers and Downloads site for updates on the applicable products. To learn more, visit the Dell Knowledge Base article
Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.
Customers may use one of the
Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.
Affected products:
Dell EMC Networking (see Resolution section below for complete list of affected products)
Resolution:
The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.
There are two essential components that need to be applied to mitigate the above-mentioned vulnerabilities:
1. Apply the firmware update listed in the Dell EMC Networking Products Affected section below.
2. Apply the applicable operating system patch. This is required to mitigate the
Intel-SA-00233
related vulnerabilities.
We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.
Please visit the
Drivers and Downloads site for updates on the applicable products. To learn more, visit the Dell Knowledge Base article
Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.
Customers may use one of the
Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.
Related Information
Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide