DSA-2025-385: Security Update for Dell AX System for Azure Local Multiple Third-Party Component Vulnerabilities
요약: Dell AX System for Azure Local remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
이 문서는 다음에 적용됩니다.
이 문서는 다음에 적용되지 않습니다.
이 문서는 특정 제품과 관련이 없습니다.
모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
영향
High
세부 정보
| Third-party Component | CVEs | More Information |
| AMD Server and Client Vulnerabilities | CVE-2023-31351, CVE-2024-21977, CVE-2024-36354 | AMD-SB-3014 , AMD-SB-4012 |
| Intel® E810 Ethernet Firmware | CVE-2025-24296 | INTEL-SA-01257 |
| Intel® 800 Series Ethernet Driver | CVE-2025-24325. CVE-2025-20093, CVE-2025-22893, CVE-2025-24484, CVE-2025-22836, CVE-2025-24303, CVE-2025-23241, CVE-2025-24324 | INTEL-SA-01296 |
| Intel® Ethernet Drivers for Linux | CVE-2025-24486. CVE-2025-25273, CVE-2025-21086, CVE-2025-26863 CVE-2025-26697, CVE-2025-24511 | INTEL-SA-01335 |
| 2025.3 IPU, Intel® Chipset Firmware | CVE-2025-20067 | INTEL-SA-01280 |
| 2025.3 IPU, Intel® Xeon® Processor Firmware | CVE-2025-20053, CVE-2025-24305, CVE-2025-21090 | INTEL-SA-01313 |
| 2025.3 IPU, Intel® TDX Module | CVE-2025-20613, CVE-2025-21096, CVE-2025-22853 | INTEL-SA-01312 |
| SEV-SNP RMP Initialization | CVE-2025-0033 | AMD-SB-3020 |
| ESXi RDMA driver for Intel® 800 Series Ethernet | CVE-2025-31146 | INTEL-SA-01376 |
영향을 받는 제품 및 문제 해결
| Product | Affected Versions | Remediated Versions | Link |
| AX-760 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-760/overview |
| AX-4510C | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-4510c/overview |
| AX-4520C | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-4520c/overview |
| AX-6515 | Versions prior to 2509 | Version 2503 or later | https://www.dell.com/support/product-details/product/ax-6515/overview |
| AX-7525 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-7525/overview |
| AX-650 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-650/overview |
| AX-750 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-750/overview |
| Product | Affected Versions | Remediated Versions | Link |
| AX-760 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-760/overview |
| AX-4510C | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-4510c/overview |
| AX-4520C | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-4520c/overview |
| AX-6515 | Versions prior to 2509 | Version 2503 or later | https://www.dell.com/support/product-details/product/ax-6515/overview |
| AX-7525 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-7525/overview |
| AX-650 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-650/overview |
| AX-750 | Versions prior to 2509 | Version 2509 or later | https://www.dell.com/support/product-details/product/ax-750/overview |
해결 방법 및 완화 방안
| CVE ID | Workaround and Mitigation |
| CVE-2025-2884 | The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes. DSA-2025-232 |
개정 내역
| Revision | Date | Description |
| 1.0 | 2025-10-14 | Initial Release |
| 2.0 | 2025-11-12 | Added CVE-2025-31146 to the remediated table |
관련 정보
법적 고지 사항
해당 제품
AX Nodes, AX-4510C, AX-4520C, ax-650, AX-6515, AX-750, AX-7525, AX-760문서 속성
문서 번호: 000379454
문서 유형: Dell Security Advisory
마지막 수정 시간: 12 11월 2025
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.