DSA-2025-172: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

Zhrnutie: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

Tento článok sa vzťahuje na Tento článok sa nevzťahuje na Tento článok nie je viazaný na žiadny konkrétny produkt. V tomto článku nie sú uvedené všetky verzie produktov.
Pozrite si ďalšie zdroje

Dosah

High

Podrobnosti

Third-party Component CVEs More Information
UEFI Firmware  CVE-2024-31155, CVE-2024-21859, CVE-2024-39279, CVE-2024-31157, CVE-2024-28047 INTEL-SA-01198This hyperlink is taking you to a website outside of Dell Technologies., INTEL-SA-01139This hyperlink is taking you to a website outside of Dell Technologies., INTEL-SA-01120This hyperlink is taking you to a website outside of Dell Technologies.
Intel SGX CVE-2024-36293 INTEL-SA-01213This hyperlink is taking you to a website outside of Dell Technologies.
Intel Processors CVE-2024-31068 INTEL-SA-01166This hyperlink is taking you to a website outside of Dell Technologies.
Ethernet Adapter Complete Driver Pack CVE-2024-24852, CVE-2024-36274 INTEL-SA-01144This hyperlink is taking you to a website outside of Dell Technologies.
Intel SPS Firmware CVE-2024-25571 INTEL-SA-01120This hyperlink is taking you to a website outside of Dell Technologies.
Data Streaming Accelerator CVE-2024-37020 INTEL-SA-01194This hyperlink is taking you to a website outside of Dell Technologies.
Integrated Dell Remote Access Controller 9 CVE-2023-52340, CVE-2024-42154  DSA-2024-460
Dell PowerEdge Server BIOS CVE-2024-38796 DSA-2025-038

 

Dell Technologies odporúča všetkým svojim zákazníkom, aby sa riadili nielen základným skóre CVSS, ale aj prechodným skóre a skóre závažnosti v konkrétnych prostrediach, na základe ktorého môžu vyhodnotiť celkové riziko vo vlastnom prostredí.

Dotknuté produkty a riešenie problému

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2024-24852, CVE-2024-36274, CVE-2024-37020, CVE-2024-31155, CVE-2024-21859, CVE-2024-25571, CVE-2024-36293, CVE-2024-39279, CVE-2024-31157, CVE-2024-28047, CVE-2024-31068, CVE-2023-52340, CVE-2024-42154, CVE-2024-38796 Dell Integrated System for Microsoft Azure Stack Hub 16G Versions prior to 2502 Version 2502 or later https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

 

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2024-24852, CVE-2024-36274, CVE-2024-37020, CVE-2024-31155, CVE-2024-21859, CVE-2024-25571, CVE-2024-36293, CVE-2024-39279, CVE-2024-31157, CVE-2024-28047, CVE-2024-31068, CVE-2023-52340, CVE-2024-42154, CVE-2024-38796 Dell Integrated System for Microsoft Azure Stack Hub 16G Versions prior to 2502 Version 2502 or later https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

 

História revízií

Revision DateDescription
1.02025-04-09Initial Release
2.02025-04-09Advisory updated to include remediation for CVE-2024-24852, CVE-2024-36274, CVE-2024-25571 and CVE-2024-37020
3.302025-07-17Advisory updated to include remediation for CVE-2023-52340, CVE-2024-42154 and CVE-2024-38796

 

Súvisiace informácie

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Dotknuté produkty

Integrated System for Microsoft Azure Stack Hub, Integrated System for Microsoft Azure Stack Hub 16G
Vlastnosti článku
Číslo článku: 000305823
Typ článku: Dell Security Advisory
Dátum poslednej úpravy: 17 júl 2025
Nájdite odpovede na svoje otázky od ostatných používateľov spoločnosti Dell
Služby podpory
Skontrolujte, či sa na vaše zariadenie vzťahujú služby podpory.