DSA-2025-181: Security Update for Dell AMD-based PowerEdge Server Vulnerabilities

摘要: Dell PowerEdge Server remediation is available for AMD Server vulnerabilities that could be exploited by malicious users to compromise the affected systems.

受影响的产品

本文适用于本文不适用于本文并非针对某种特定的产品。本文并非包含所有产品版本。

影响

Medium

详情

Third-party Component	CVEs	More Information
Platform Initialization (PI)	CVE-2024-36348, CVE-2024-36349, CVE-2024-36350, CVE-2024-36357	AMD-SB-7029

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数，这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

CVEs Addressed	Product	Software/Firmware	Affected Versions	Remediated Versions	Link
CVE-2024-36350, CVE-2024-36357	PowerEdge R6615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6615	BIOS	Versions prior to 1.6.2	Version 1.6.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge XE8545	BIOS	Versions prior to 2.18.0	Version 2.18.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-xe8545/drivers
CVE-2024-36350, CVE-2024-36357	Dell EMC XC Core XC7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/xc7525-core/drivers
CVE-2024-36350, CVE-2024-36357	Dell XC Core XC7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/dell-xc7625-core/drivers

CVEs Addressed	Product	Software/Firmware	Affected Versions	Remediated Versions	Link
CVE-2024-36350, CVE-2024-36357	PowerEdge R6615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7615	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7625/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6615	BIOS	Versions prior to 1.6.2	Version 1.6.2 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6615/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7515	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7515/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge R7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-r7525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge C6525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-c6525/drivers
CVE-2024-36350, CVE-2024-36357	PowerEdge XE8545	BIOS	Versions prior to 2.18.0	Version 2.18.0 or later	https://www.dell.com/support/home/product-support/product/poweredge-xe8545/drivers
CVE-2024-36350, CVE-2024-36357	Dell EMC XC Core XC7525	BIOS	Versions prior to 2.19.0	Version 2.19.0 or later	https://www.dell.com/support/home/product-support/product/xc7525-core/drivers
CVE-2024-36350, CVE-2024-36357	Dell XC Core XC7625	BIOS	Versions prior to 1.11.2	Version 1.11.2 or later	https://www.dell.com/support/home/product-support/product/dell-xc7625-core/drivers

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
AMD also discloses CVE-2024-36348 and CVE-2024-36349 in AMD-SB-7029. CVE-2024-36349 impacts 14G, 15G and 16G platforms. CVE-2024-36348 impacts 15G and 16G platforms. AMD has determined that exploitation of CVE-2024-36348 and CVE-2024-36349 could result in leakage of CPU control registers and TSC_AUX, respectively, which AMD does not view as sensitive. As a result, AMD does not plan to issue remediations for CVE-2024-36348 or CVE-2024-36349.

修订历史记录

Revision	Date	Description
1.0	2025-07-16	Initial Release

法律免责声明

受影响的产品

Dell XC Core XC7625, PowerEdge C6525, PowerEdge C6615, PowerEdge R6515, PowerEdge R6525, PowerEdge R6615, PowerEdge R6625, PowerEdge R7515, PowerEdge R7525, PowerEdge R7615, PowerEdge R7625, PowerEdge XE8545, Dell EMC XC Core XC7525

文章编号: 000345844

文章类型: Dell Security Advisory

上次修改时间: 16 7月 2025

DSA-2025-181: Security Update for Dell AMD-based PowerEdge Server Vulnerabilities

摘要: Dell PowerEdge Server remediation is available for AMD Server vulnerabilities that could be exploited by malicious users to compromise the affected systems.

影响

详情

受影响的产品和补救措施

修订历史记录

相关信息

法律免责声明

受影响的产品

影响

详情

受影响的产品和补救措施

修订历史记录

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

DSA-2025-181: Security Update for Dell AMD-based PowerEdge Server Vulnerabilities

摘要: Dell PowerEdge Server remediation is available for AMD Server vulnerabilities that could be exploited by malicious users to compromise the affected systems.

详细文章

影响

详情

受影响的产品和补救措施

修订历史记录

相关信息

法律免责声明

受影响的产品

影响

详情

受影响的产品和补救措施

修订历史记录

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务