DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities
Сводка: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...
Данная статья применяется к
Данная статья не применяется к
Эта статья не привязана к какому-либо конкретному продукту.
В этой статье указаны не все версии продуктов.
Влияние
High
Подробные сведения
| Third-party Component | CVEs | More Information |
| Intel 2025.2 IPU | CVE-2025-20109, CVE-2025-20044 | DSA-2025-156 |
| Intel Processors | CVE-2024-33607, CVE-2025-24324, CVE-2025-23241, CVE-2025-24303, CVE-2025-22836, CVE-2025-24484, CVE-2025-22893, CVE-2025-20093, CVE-2025-24325 | DSA-2025-324 |
| Intel 2025.3 IPU for PowerEdge R760 and PowerEdge R660 | CVE-2025-20613, CVE-2025-22853, CVE-2025-21096 | DSA-2025-297 |
| Dell iDRAC9 Arbitrary File Export - Integrated Dell Remote Access Controller 9 | CVE-2025-22397 | DSA-2025-376 |
Затронутые продукты и исправление
| Product | Affected Versions | Remediated Versions | Link |
| Dell Integrated System for Microsoft Azure Stack Hub 16G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
| Dell Integrated System for Microsoft Azure Stack Hub 14G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
| Product | Affected Versions | Remediated Versions | Link |
| Dell Integrated System for Microsoft Azure Stack Hub 16G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
| Dell Integrated System for Microsoft Azure Stack Hub 14G | Versions prior to 2508 | Version 2508 or later | https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers |
Временные решения и снижение риска
| CVE ID | Workaround and Mitigation |
| CVE-2025-2884 | The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes. DSA-2025-232 |
История изменений
| Revision | Date | Description |
| 1.0 | 2025-10-13 | Initial Release |
| 2.0 | 2025-11-13 | Added CVE-2025-22397 to the remediated table |
Связанная информация
Правовая оговорка
Затронутые продукты
Integrated System for Microsoft Azure Stack Hub, Integrated System for Microsoft Azure Stack Hub 14G, Integrated System for Microsoft Azure Stack Hub 16GСвойства статьи
Номер статьи: 000379435
Тип статьи: Dell Security Advisory
Последнее изменение: 13 Nov 2025
Получите ответы на свои вопросы от других пользователей Dell
Услуги технической поддержки
Проверьте, распространяются ли на ваше устройство услуги технической поддержки.