DSA-2024-416: Security Update for Dell APEX Cloud Platform for Microsoft Azure and Dell APEX Cloud Platform Foundation Software for Multiple Third-Party Component Vulnerabilities

Summary: Dell APEX Cloud Platform for Microsoft Azure remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

High

Details

Third-party Component

CVEs

More Information

Dell PowerEdge Server Security Update for Intel Ethernet Controllers & Adapters and Intel Processor Vulnerabilities

CVE-2024-24852, CVE-2024-36274

DSA-2025-042

Dell PowerEdge Server Security Update for Intel Ethernet Controllers & Adapters and TDX Software Vulnerabilities

CVE-2024-22374, CVE-2024-22376, CVE-2024-21810, CVE-2024-23497, CVE-2024-23981, CVE-2024-24986, CVE-2024-21807, CVE-2024-21769, CVE-2024-24983, CVE-2024-23499, CVE-2024-21806

DSA-2024-359

Dell iDRAC Service Module 7-Zip Vulnerability

CVE-2023-31102, CVE-2023-40481

DSA-2024-379

Dell PowerEdge Server for Intel 2024 Security Advisories

CVE-2023-43753, CVE-2023-41833

DSA-2024-308

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product

Affected Versions

Remediated Versions

Link

Microsoft Azure Stack HCI

Versions prior to 10.2408.1

Version 10.2408.1 or later

Drivers & Downloads

Dell Apex Cloud Platform for Microsoft Azure

Versions prior to 01.03.00.00

Version 01.03.00.00 or later

 Drivers & Downloads

Product

Affected Versions

Remediated Versions

Link

Microsoft Azure Stack HCI

Versions prior to 10.2408.1

Version 10.2408.1 or later

Drivers & Downloads

Dell Apex Cloud Platform for Microsoft Azure

Versions prior to 01.03.00.00

Version 01.03.00.00 or later

 Drivers & Downloads

To apply patch for Dell iDRAC Service Module 7-Zip Vulnerability, refer to the instructions provided in Workarounds and Mitigations Section.

Workarounds & Mitigations

CVE ID

MITIGATION

CVE-2023-31102, CVE-2023-40481

How to manually patch iSM security hotfix after LCM to 01.03.x.x release

Revision History

Revision

Date

Description

1.0

2024-10-18

Initial Release

2.0

2025-02-27

Added CVE-2024-24852, CVE-2024-36274 for Intel Ethernet Controllers & Adapters

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

APEX, APEX Cloud Platforms Solution Offerings, APEX Cloud Platform for Microsoft Azure, Product Security Information
Article Properties
Article Number: 000237607
Article Type: Dell Security Advisory
Last Modified: 13 Oct 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.