DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

法律免责声明

受影响的产品

提供反馈

本文适用于本文不适用于本文并非针对某种特定的产品。本文并非包含所有产品版本。

查看其他资源

影响

High

详情

Third-party Component	CVEs	More Information
Intel 2025.2 IPU	CVE-2025-20109, CVE-2025-20044	DSA-2025-156
Intel Processors	CVE-2024-33607, CVE-2025-24324, CVE-2025-23241, CVE-2025-24303, CVE-2025-22836, CVE-2025-24484, CVE-2025-22893, CVE-2025-20093, CVE-2025-24325	DSA-2025-324
Intel 2025.3 IPU for PowerEdge R760 and PowerEdge R660	CVE-2025-20613, CVE-2025-22853, CVE-2025-21096	DSA-2025-297
Dell iDRAC9 Arbitrary File Export - Integrated Dell Remote Access Controller 9	CVE-2025-22397	DSA-2025-376

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数，这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

Product	Affected Versions	Remediated Versions	Link
Dell Integrated System for Microsoft Azure Stack Hub 16G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers
Dell Integrated System for Microsoft Azure Stack Hub 14G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

Product	Affected Versions	Remediated Versions	Link
Dell Integrated System for Microsoft Azure Stack Hub 16G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers
Dell Integrated System for Microsoft Azure Stack Hub 14G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

解决方法和缓解措施

CVE ID	Workaround and Mitigation
CVE-2025-2884	The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes. DSA-2025-232

修订历史记录

Revision	Date	Description
1.0	2025-10-13	Initial Release
2.0	2025-11-13	Added CVE-2025-22397 to the remediated table

法律免责声明

受影响的产品

Integrated System for Microsoft Azure Stack Hub, Integrated System for Microsoft Azure Stack Hub 14G, Integrated System for Microsoft Azure Stack Hub 16G

文章编号: 000379435

文章类型: Dell Security Advisory

上次修改时间: 13 11月 2025

DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

相关信息

法律免责声明

受影响的产品

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ... 扩大查看范围 缩小查看范围

详细文章

影响

详情

受影响的产品和补救措施

解决方法和缓解措施

修订历史记录

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...