DSA-2025-385: Security Update for Dell AX System for Azure Local Multiple Third-Party Component Vulnerabilities

Sommaire: Dell AX System for Azure Local remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Cet article s’applique à Cet article ne s’applique pas à Cet article n’est lié à aucun produit spécifique. Toutes les versions de produits ne sont pas identifiées dans cet article.
Consulter d’autres ressources

Impact

High

Détails

Third-party Component CVEs More Information
AMD Server and Client Vulnerabilities CVE-2023-31351, CVE-2024-21977, CVE-2024-36354 AMD-SB-3014This hyperlink is taking you to a website outside of Dell Technologies.AMD-SB-4012This hyperlink is taking you to a website outside of Dell Technologies.
Intel® E810 Ethernet Firmware CVE-2025-24296 INTEL-SA-01257This hyperlink is taking you to a website outside of Dell Technologies.
Intel® 800 Series Ethernet Driver CVE-2025-24325. CVE-2025-20093, CVE-2025-22893, CVE-2025-24484, CVE-2025-22836, CVE-2025-24303, CVE-2025-23241, CVE-2025-24324 INTEL-SA-01296This hyperlink is taking you to a website outside of Dell Technologies.
Intel® Ethernet Drivers for Linux CVE-2025-24486. CVE-2025-25273, CVE-2025-21086, CVE-2025-26863 CVE-2025-26697, CVE-2025-24511 INTEL-SA-01335This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® Chipset Firmware CVE-2025-20067 INTEL-SA-01280This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® Xeon® Processor Firmware CVE-2025-20053, CVE-2025-24305, CVE-2025-21090 INTEL-SA-01313This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® TDX Module CVE-2025-20613, CVE-2025-21096, CVE-2025-22853 INTEL-SA-01312This hyperlink is taking you to a website outside of Dell Technologies.
SEV-SNP RMP Initialization CVE-2025-0033 AMD-SB-3020This hyperlink is taking you to a website outside of Dell Technologies.
ESXi RDMA driver for Intel® 800 Series Ethernet CVE-2025-31146 INTEL-SA-01376This hyperlink is taking you to a website outside of Dell Technologies.

 

Dell Technologies recommande à tous ses clients de tenir compte à la fois du score de base CVSS et de tous les scores temporels et environnementaux pertinents qui pourraient avoir une incidence sur la gravité potentielle associée à une vulnérabilité de sécurité particulière.

Produits touchés et correction

Product Affected Versions Remediated Versions Link
AX-760 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-760/overview
AX-4510C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4510c/overview
AX-4520C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4520c/overview
AX-6515 Versions prior to 2509 Version 2503 or later https://www.dell.com/support/product-details/product/ax-6515/overview
AX-7525 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-7525/overview
AX-650 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-650/overview
AX-750 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-750/overview

 

Product Affected Versions Remediated Versions Link
AX-760 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-760/overview
AX-4510C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4510c/overview
AX-4520C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4520c/overview
AX-6515 Versions prior to 2509 Version 2503 or later https://www.dell.com/support/product-details/product/ax-6515/overview
AX-7525 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-7525/overview
AX-650 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-650/overview
AX-750 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-750/overview

 

Solutions de contournement et mesures d’atténuation

CVE ID Workaround and Mitigation
CVE-2025-2884 The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes.
DSA-2025-232

 

Historique de révision

RevisionDateDescription
1.02025-10-14Initial Release
2.02025-11-12Added CVE-2025-31146 to the remediated table

 

Renseignements connexes

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Avis de non-responsabilité

Produits touchés

AX Nodes, AX-4510C, AX-4520C, ax-650, AX-6515, AX-750, AX-7525, AX-760
Propriétés de l’article
Numéro d’article: 000379454
Type d’article: Dell Security Advisory
Dernière modification: 12 nov. 2025
Obtenez des réponses à vos questions auprès d’autre utilisateurs de Dell
Services de soutien
Vérifiez si votre appareil est couvert par les services de soutien.