DSA-2025-339: Security Update for Dell Avamar Data Store Gen5A Multiple Third-Party Component Vulnerabilities
Zusammenfassung: Dell Avamar Data Store Gen5A remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Dieser Artikel gilt für
Dieser Artikel gilt nicht für
Dieser Artikel ist nicht an ein bestimmtes Produkt gebunden.
In diesem Artikel werden nicht alle Produktversionen aufgeführt.
Auswirkungen
Critical
Details
| Third-party Component | CVEs | More Information |
| Dell PowerEdge Server BIOS | CVE-2024-38796, CVE-2024-28956, CVE-2024-45332, CVE-2024-48012 | DSA-2025-038, DSA-2025-041, DSA-2025-156, DSA-2025-046 |
| Integrated Dell Remote Access Controller (iDRAC) | CVE-2025-26466, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-50602, CVE-2024-2961, CVE-2023-6780, CVE-2024-52533, CVE-2023-52340, CVE-2024-42154 | DSA-2025-145. DSA-2025-146, DSA-2024-460 |
Betroffene Produkte und Korrektur
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| Avamar Data Store Gen5A | Dell PowerEdge Server BIOS | Versions prior to 2.24.0 | Version 2.24.0 | Avamar Data Store Gen5A Update for Server Nodes (Hotfix 338901) |
| Avamar Data Store Gen5A | Integrated Dell Remote Access Controller (iDRAC) | Versions prior to 7.00.00.181 | Version 7.00.00.181 | Avamar Data Store Gen5A Update for Server Nodes (Hotfix 338901) |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| Avamar Data Store Gen5A | Dell PowerEdge Server BIOS | Versions prior to 2.24.0 | Version 2.24.0 | Avamar Data Store Gen5A Update for Server Nodes (Hotfix 338901) |
| Avamar Data Store Gen5A | Integrated Dell Remote Access Controller (iDRAC) | Versions prior to 7.00.00.181 | Version 7.00.00.181 | Avamar Data Store Gen5A Update for Server Nodes (Hotfix 338901) |
Notes:
- This security includes both newly remedied and past vulnerabilities included in this cumulative update.
- To schedule a platform security patch installation or firmware upgrade, please contact Dell Customer Support. Dell recommends upgrading to the latest release/version of your product.
Known Issue:
- Certain older BIOS versions may fail to upgrade:
- Updating from BIOS version 2.4.8 to 2.21.2 is known to fail.
- Updating from BIOS version 2.9.4 to 2.21.2 is known to fail.
Remedy:
- For BIOS versions prior to 2.12.2, contact Dell Customer Support to apply the “September 2021 firmware block AVP(Gen5aSep2021Blk338753.avp)”, before updating to the December 2023 firmware block release.
- To know the BIOS version, run the following command as admin/root user in the Avamar console.
omreport system version
Workarounds und Korrekturmaßnahmen
None
Revisionsverlauf
| Revision | Date | Description |
| 1.0 | 2025-09-01 | Initial Release |
| 2.0 | 2025-10-06 | Replaced the NVD generic search link with the PowerEdge and iDrac advisories |
| 3.0 | 2025-10-22 | Major update to include CVE-2024-48012 |
Zugehörige Informationen
Rechtlicher Hinweis
Betroffene Produkte
Avamar, Avamar Data Store, Avamar Data Store Gen5A, Avamar ServerArtikeleigenschaften
Artikelnummer: 000362542
Artikeltyp: Dell Security Advisory
Zuletzt geändert: 22 Okt. 2025
Antworten auf Ihre Fragen erhalten Sie von anderen Dell NutzerInnen
Support Services
Prüfen Sie, ob Ihr Gerät durch Support Services abgedeckt ist.