DSA-2025-181: Security Update for Dell AMD-based PowerEdge Server Vulnerabilities

상세한 문서

영향

영향을 받는 제품 및 문제 해결

개정 내역

요약: Dell PowerEdge Server remediation is available for AMD Server vulnerabilities that could be exploited by malicious users to compromise the affected systems.

이 문서는 다음에 적용됩니다. 이 문서는 다음에 적용되지 않습니다. 이 문서는 특정 제품과 관련이 없습니다. 모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.

기타 리소스 확인

영향

Medium

세부 정보

Third-party Component	CVEs	More Information
Platform Initialization (PI)	CVE-2024-36348, CVE-2024-36349, CVE-2024-36350, CVE-2024-36357	AMD-SB-7029

Dell Technologies는 모든 고객이 CVSS 기본 점수와 관련 임시 및 환경 점수를 모두 고려할 것을 권장합니다. 이 경우 특정 보안 취약성과 관련된 잠재적인 심각도에 영향을 미칠 수 있습니다.

영향을 받는 제품 및 문제 해결

CVEs Addressed	Product	Software/Firmware	Affected Versions	Remediated Versions	Link
CVE-2024-36350, CVE-2024-36357	PowerEdge R6615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6615	BIOS	Versions prior to 1.6.2	Version 1.6.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge XE8545	BIOS	Versions prior to 2.18.0	Version 2.18.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-xe8545/drivers
CVE-2024-36350, CVE-2024-36357	Dell EMC XC Core XC7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/xc7525-core/drivers
CVE-2024-36350, CVE-2024-36357	Dell XC Core XC7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/dell-xc7625-core/drivers

CVEs Addressed	Product	Software/Firmware	Affected Versions	Remediated Versions	Link
CVE-2024-36350, CVE-2024-36357	PowerEdge R6615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6615	BIOS	Versions prior to 1.6.2	Version 1.6.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge XE8545	BIOS	Versions prior to 2.18.0	Version 2.18.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-xe8545/drivers
CVE-2024-36350, CVE-2024-36357	Dell EMC XC Core XC7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/xc7525-core/drivers
CVE-2024-36350, CVE-2024-36357	Dell XC Core XC7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/dell-xc7625-core/drivers

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
AMD also discloses CVE-2024-36348 and CVE-2024-36349 in AMD-SB-7029. CVE-2024-36349 impacts 14G, 15G and 16G platforms. CVE-2024-36348 impacts 15G and 16G platforms. AMD has determined that exploitation of CVE-2024-36348 and CVE-2024-36349 could result in leakage of CPU control registers and TSC_AUX, respectively, which AMD does not view as sensitive. As a result, AMD does not plan to issue remediations for CVE-2024-36348 or CVE-2024-36349.

개정 내역

Revision	Date	Description
1.0	2025-07-16	Initial Release

법적 고지 사항

해당 제품

Dell XC Core XC7625, PowerEdge C6525, PowerEdge C6615, PowerEdge R6515, PowerEdge R6525, PowerEdge R6615, PowerEdge R6625, PowerEdge R7515, PowerEdge R7525, PowerEdge R7615, PowerEdge R7625, PowerEdge XE8545, Dell EMC XC Core XC7525

문서 번호: 000345844

문서 유형: Dell Security Advisory

마지막 수정 시간: 16 7월 2025

디바이스에 지원 서비스가 적용되는지 확인하십시오.

DSA-2025-181: Security Update for Dell AMD-based PowerEdge Server Vulnerabilities

요약: Dell PowerEdge Server remediation is available for AMD Server vulnerabilities that could be exploited by malicious users to compromise the affected systems.

영향

세부 정보

영향을 받는 제품 및 문제 해결

개정 내역

관련 정보

법적 고지 사항

해당 제품

문서 속성

다른 Dell 사용자에게 질문에 대한 답변 찾기

지원 서비스

문서 속성

다른 Dell 사용자에게 질문에 대한 답변 찾기

지원 서비스