DSA-2025-385: Security Update for Dell AX System for Azure Local Multiple Third-Party Component Vulnerabilities

Riepilogo: Dell AX System for Azure Local remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Questo articolo si applica a Questo articolo non si applica a Questo articolo non è legato a un prodotto specifico. Non tutte le versioni del prodotto sono identificate in questo articolo.
Scopri le altre risorse

Impatto

High

Dettagli

Third-party Component CVEs More Information
AMD Server and Client Vulnerabilities CVE-2023-31351, CVE-2024-21977, CVE-2024-36354 AMD-SB-3014This hyperlink is taking you to a website outside of Dell Technologies.AMD-SB-4012This hyperlink is taking you to a website outside of Dell Technologies.
Intel® E810 Ethernet Firmware CVE-2025-24296 INTEL-SA-01257This hyperlink is taking you to a website outside of Dell Technologies.
Intel® 800 Series Ethernet Driver CVE-2025-24325. CVE-2025-20093, CVE-2025-22893, CVE-2025-24484, CVE-2025-22836, CVE-2025-24303, CVE-2025-23241, CVE-2025-24324 INTEL-SA-01296This hyperlink is taking you to a website outside of Dell Technologies.
Intel® Ethernet Drivers for Linux CVE-2025-24486. CVE-2025-25273, CVE-2025-21086, CVE-2025-26863 CVE-2025-26697, CVE-2025-24511 INTEL-SA-01335This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® Chipset Firmware CVE-2025-20067 INTEL-SA-01280This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® Xeon® Processor Firmware CVE-2025-20053, CVE-2025-24305, CVE-2025-21090 INTEL-SA-01313This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® TDX Module CVE-2025-20613, CVE-2025-21096, CVE-2025-22853 INTEL-SA-01312This hyperlink is taking you to a website outside of Dell Technologies.
SEV-SNP RMP Initialization CVE-2025-0033 AMD-SB-3020This hyperlink is taking you to a website outside of Dell Technologies.
ESXi RDMA driver for Intel® 800 Series Ethernet CVE-2025-31146 INTEL-SA-01376This hyperlink is taking you to a website outside of Dell Technologies.

 

Dell Technologies raccomanda a tutti i clienti di prendere in considerazione sia il punteggio base CVSS, sia ogni eventuale punteggio temporale o ambientale che possa avere effetti sul livello di gravità potenziale associato a una specifica vulnerabilità di sicurezza.

Prodotti interessati e correzione

Product Affected Versions Remediated Versions Link
AX-760 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-760/overview
AX-4510C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4510c/overview
AX-4520C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4520c/overview
AX-6515 Versions prior to 2509 Version 2503 or later https://www.dell.com/support/product-details/product/ax-6515/overview
AX-7525 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-7525/overview
AX-650 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-650/overview
AX-750 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-750/overview

 

Product Affected Versions Remediated Versions Link
AX-760 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-760/overview
AX-4510C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4510c/overview
AX-4520C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4520c/overview
AX-6515 Versions prior to 2509 Version 2503 or later https://www.dell.com/support/product-details/product/ax-6515/overview
AX-7525 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-7525/overview
AX-650 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-650/overview
AX-750 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-750/overview

 

Soluzioni alternative e mitigazioni

CVE ID Workaround and Mitigation
CVE-2025-2884 The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes.
DSA-2025-232

 

Cronologia delle revisioni

RevisionDateDescription
1.02025-10-14Initial Release
2.02025-11-12Added CVE-2025-31146 to the remediated table

 

Informazioni correlate

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Dichiarazione di non responsabilità

Prodotti interessati

AX Nodes, AX-4510C, AX-4520C, ax-650, AX-6515, AX-750, AX-7525, AX-760
Proprietà dell'articolo
Numero articolo: 000379454
Tipo di articolo: Dell Security Advisory
Ultima modifica: 12 nov 2025
Trova risposta alle tue domande dagli altri utenti Dell
Support Services
Verifica che il dispositivo sia coperto dai Servizi di supporto.