DSA-2025-385: Security Update for Dell AX System for Azure Local Multiple Third-Party Component Vulnerabilities

Сводка: Dell AX System for Azure Local remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Данная статья применяется к Данная статья не применяется к Эта статья не привязана к какому-либо конкретному продукту. В этой статье указаны не все версии продуктов.
Ознакомьтесь с другими ресурсами

Влияние

High

Подробные сведения

Third-party Component CVEs More Information
AMD Server and Client Vulnerabilities CVE-2023-31351, CVE-2024-21977, CVE-2024-36354 AMD-SB-3014This hyperlink is taking you to a website outside of Dell Technologies.AMD-SB-4012This hyperlink is taking you to a website outside of Dell Technologies.
Intel® E810 Ethernet Firmware CVE-2025-24296 INTEL-SA-01257This hyperlink is taking you to a website outside of Dell Technologies.
Intel® 800 Series Ethernet Driver CVE-2025-24325. CVE-2025-20093, CVE-2025-22893, CVE-2025-24484, CVE-2025-22836, CVE-2025-24303, CVE-2025-23241, CVE-2025-24324 INTEL-SA-01296This hyperlink is taking you to a website outside of Dell Technologies.
Intel® Ethernet Drivers for Linux CVE-2025-24486. CVE-2025-25273, CVE-2025-21086, CVE-2025-26863 CVE-2025-26697, CVE-2025-24511 INTEL-SA-01335This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® Chipset Firmware CVE-2025-20067 INTEL-SA-01280This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® Xeon® Processor Firmware CVE-2025-20053, CVE-2025-24305, CVE-2025-21090 INTEL-SA-01313This hyperlink is taking you to a website outside of Dell Technologies.
2025.3 IPU, Intel® TDX Module CVE-2025-20613, CVE-2025-21096, CVE-2025-22853 INTEL-SA-01312This hyperlink is taking you to a website outside of Dell Technologies.
SEV-SNP RMP Initialization CVE-2025-0033 AMD-SB-3020This hyperlink is taking you to a website outside of Dell Technologies.
ESXi RDMA driver for Intel® 800 Series Ethernet CVE-2025-31146 INTEL-SA-01376This hyperlink is taking you to a website outside of Dell Technologies.

 

Dell рекомендует всем клиентам учитывать как базовую оценку CVSS, так и любые временные и обусловленные средой оценки, которые могут повлиять на потенциальную степень серьезности конкретной уязвимости.

Затронутые продукты и исправление

Product Affected Versions Remediated Versions Link
AX-760 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-760/overview
AX-4510C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4510c/overview
AX-4520C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4520c/overview
AX-6515 Versions prior to 2509 Version 2503 or later https://www.dell.com/support/product-details/product/ax-6515/overview
AX-7525 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-7525/overview
AX-650 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-650/overview
AX-750 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-750/overview

 

Product Affected Versions Remediated Versions Link
AX-760 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-760/overview
AX-4510C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4510c/overview
AX-4520C Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-4520c/overview
AX-6515 Versions prior to 2509 Version 2503 or later https://www.dell.com/support/product-details/product/ax-6515/overview
AX-7525 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-7525/overview
AX-650 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-650/overview
AX-750 Versions prior to 2509 Version 2509 or later https://www.dell.com/support/product-details/product/ax-750/overview

 

Временные решения и снижение риска

CVE ID Workaround and Mitigation
CVE-2025-2884 The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes.
DSA-2025-232

 

История изменений

RevisionDateDescription
1.02025-10-14Initial Release
2.02025-11-12Added CVE-2025-31146 to the remediated table

 

Связанная информация

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Правовая оговорка

Затронутые продукты

AX Nodes, AX-4510C, AX-4520C, ax-650, AX-6515, AX-750, AX-7525, AX-760
Свойства статьи
Номер статьи: 000379454
Тип статьи: Dell Security Advisory
Последнее изменение: 12 Nov 2025
Получите ответы на свои вопросы от других пользователей Dell
Услуги технической поддержки
Проверьте, распространяются ли на ваше устройство услуги технической поддержки.