DSA-2025-299: Security Update for Dell PowerEdge Server BIOS for an Access of Memory Location After End of Buffer Vulnerability

Oversigt: Dell PowerEdge Server BIOS remediation is available for an Access of Memory Location After End of Buffer vulnerability that could be exploited by malicious users to compromise the affected system. ...

Berørte produkter og udbedring

Berørte produkter

Denne artikel gælder for Denne artikel gælder ikke for Denne artikel er ikke knyttet til et bestemt produkt. Det er ikke alle produktversioner, der er identificeret i denne artikel.

Udforsk andre ressourcer

Virkning

Low

Oplysninger

Proprietary Code CVEs	Description	CVSS Base Score	CVSS Vector String
CVE-2025-36581	Dell PowerEdge Platform version(s) 14G AMD BIOS v1.25.0 and prior, contain(s) an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.	3.8	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Proprietary Code CVEs	Description	CVSS Base Score	CVSS Vector String
CVE-2025-36581	Dell PowerEdge Platform version(s) 14G AMD BIOS v1.25.0 and prior, contain(s) an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.	3.8	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Dell Technologies anbefaler, at alle kunder tager hensyn til både CVSS-basisresultatet og alle relevante tidsmæssige og miljømæssige resultater, som kan have betydning for den potentielle alvorsgrad, der er forbundet med en bestemt sikkerhedsrisiko.

Berørte produkter og udbedring

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
PowerEdge R6415	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	https://www.dell.com/support/product-details/product/poweredge-r6415/drivers
PowerEdge R7415	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	https://www.dell.com/support/product-details/product/poweredge-r7415/drivers
PowerEdge R7425	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	https://www.dell.com/support/product-details/product/poweredge-r7425/drivers

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
PowerEdge R6415	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	https://www.dell.com/support/product-details/product/poweredge-r6415/drivers
PowerEdge R7415	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	https://www.dell.com/support/product-details/product/poweredge-r7415/drivers
PowerEdge R7425	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	https://www.dell.com/support/product-details/product/poweredge-r7425/drivers

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Revisionshistorik

Revision	Date	Description
1.0	2025-08-13	Initial release

Bekræftelser

Dell would like to thank codebreaker1337 for reporting this issue.

Relaterede oplysninger

Ansvarsfraskrivelse

Berørte produkter

PowerEdge R6415, PowerEdge R7415, PowerEdge R7425

Artikelnummer: 000356405

Artikeltype: Dell Security Advisory

Senest ændret: 13 aug. 2025

Kontrollér, om din enhed er dækket af supportservices.

DSA-2025-299: Security Update for Dell PowerEdge Server BIOS for an Access of Memory Location After End of Buffer Vulnerability

Oversigt: Dell PowerEdge Server BIOS remediation is available for an Access of Memory Location After End of Buffer vulnerability that could be exploited by malicious users to compromise the affected system. ...

Virkning

Oplysninger

Berørte produkter og udbedring

Revisionshistorik

Bekræftelser

Lignende oplysninger

Ansvarsfraskrivelse

Berørte produkter

Virkning

Oplysninger

Berørte produkter og udbedring

Revisionshistorik

Bekræftelser

Relaterede oplysninger

Ansvarsfraskrivelse

Berørte produkter

Artikelegenskaber

Find svar på dine spørgsmål fra andre Dell-brugere

Supportservices

Artikelegenskaber

Find svar på dine spørgsmål fra andre Dell-brugere

Supportservices

DSA-2025-299: Security Update for Dell PowerEdge Server BIOS for an Access of Memory Location After End of Buffer Vulnerability

Oversigt: Dell PowerEdge Server BIOS remediation is available for an Access of Memory Location After End of Buffer vulnerability that could be exploited by malicious users to compromise the affected system. ... Se mere Se mindre

Detaljeret artikel

Virkning

Oplysninger

Berørte produkter og udbedring

Revisionshistorik

Bekræftelser

Relaterede oplysninger

Ansvarsfraskrivelse

Berørte produkter

Artikelegenskaber

Find svar på dine spørgsmål fra andre Dell-brugere

Supportservices

Artikelegenskaber

Find svar på dine spørgsmål fra andre Dell-brugere

Supportservices

Oversigt: Dell PowerEdge Server BIOS remediation is available for an Access of Memory Location After End of Buffer vulnerability that could be exploited by malicious users to compromise the affected system. ...