DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities
요약: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...
이 문서는 다음에 적용됩니다.
이 문서는 다음에 적용되지 않습니다.
이 문서는 특정 제품과 관련이 없습니다.
모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
영향
High
세부 정보
| Third-party Component | CVEs | More Information |
| Intel 2025.2 IPU | CVE-2025-20109, CVE-2025-20044 | DSA-2025-156 |
| Intel Processors | CVE-2024-33607, CVE-2025-24324, CVE-2025-23241, CVE-2025-24303, CVE-2025-22836, CVE-2025-24484, CVE-2025-22893, CVE-2025-20093, CVE-2025-24325 | DSA-2025-324 |
| Intel 2025.3 IPU for PowerEdge R760 and PowerEdge R660 | CVE-2025-20613, CVE-2025-22853, CVE-2025-21096 | DSA-2025-297 |
| Dell iDRAC9 Arbitrary File Export - Integrated Dell Remote Access Controller 9 | CVE-2025-22397 | DSA-2025-376 |
| iDRAC9 – Information disclosure in a easily decodable format - Integrated Dell Remote Access Controller 9 - Dell Integrated System for Microsoft Azure Stack Hub | CVE-2026-26948, CVE-2026-26945 | DSA-2026-113 |
| Intel IPU INTEL-TA-01234 - PowerEdge Platform (VR Only) - Dell Integrated System for Microsoft Azure Stack Hub | CVE-2025-20053, CVE-2025-20613, CVE-2025-21090, CVE-2025-21096, CVE-2025-22853, CVE-2025-24305, CVE-2025-20064, CVE-2025-20105, CVE-2025-20028, CVE-2025-20027, CVE-2025-20073, CVE-2025-20064, CVE-2025-20028, CVE-2025-20027 | DSA-2025-297 |
영향을 받는 제품 및 문제 해결
| Product | Affected Versions | Remediated Versions | Link |
| Dell Integrated System for Microsoft Azure Stack Hub 16G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
| Dell Integrated System for Microsoft Azure Stack Hub 14G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
| Product | Affected Versions | Remediated Versions | Link |
| Dell Integrated System for Microsoft Azure Stack Hub 16G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
| Dell Integrated System for Microsoft Azure Stack Hub 14G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
해결 방법 및 완화 방안
| CVE ID | Workaround and Mitigation |
| CVE-2025-2884 | The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes.
DSA-2025-232 |
개정 내역
| Revision | Date | Description |
| 1.0 | 2025-10-13 | Initial Release |
| 2.0 | 2025-11-13 | Added CVE-2025-22397 to the remediated table |
| 3.0 | 2026-03-30 | Added CVE-2026-26948, CVE-2026-26945, CVE-2025-20053, CVE-2025-20613, CVE-2025-21090, CVE-2025-21096, CVE-2025-22853, CVE-2025-24305, CVE-2025-20064, CVE-2025-20105, CVE-2025-20028, CVE-2025-20027, CVE-2025-20073, CVE-2025-20064, CVE-2025-20028, CVE-2025-20027 to the advisory |
관련 정보
법적 고지 사항
해당 제품
Integrated System for Microsoft Azure Stack Hub 14G, Integrated System for Microsoft Azure Stack Hub 16G문서 속성
문서 번호: 000379435
문서 유형: Dell Security Advisory
마지막 수정 시간: 30 3월 2026
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.