DSA-2026-265: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

本文适用于 本文不适用于 本文并非针对某种特定的产品。 本文并非包含所有产品版本。

影响

Critical

详情

Third-party Component CVEs More Information
iDRAC9 CVE-2025-60876, CVE-2022-43680, CVE-2023-52425, CVE-2024-28757, CVE-2026-25210, CVE-2026-32777, CVE-2026-32778, CVE-2026-32776 https://nvd.nist.gov/vuln/search This hyperlink is taking you to a website outside of Dell Technologies.
Intel BIOS CVE-2023-6237, CVE-2024-4741 https://nvd.nist.gov/vuln/search This hyperlink is taking you to a website outside of Dell Technologies.
Mellanox CX 6-Lx CVE-2025-23299 https://nvd.nist.gov/vuln/search This hyperlink is taking you to a website outside of Dell Technologies.

 

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数,这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2023-6237, CVE-2024-4741, CVE-2025-23299 Dell Integrated System for Microsoft Azure Stack Hub 16G Versions prior to 2603 Version 2606 or later https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers
CVE-2025-60876, CVE-2022-43680, CVE-2023-52425, CVE-2024-28757, CVE-2026-25210, CVE-2026-32777, CVE-2026-32778, CVE-2026-32776 Dell Integrated System for Microsoft Azure Stack Hub 14G Versions prior to 2603 Version 2606 or later https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack14g/drivers

 

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2023-6237, CVE-2024-4741, CVE-2025-23299 Dell Integrated System for Microsoft Azure Stack Hub 16G Versions prior to 2603 Version 2606 or later https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers
CVE-2025-60876, CVE-2022-43680, CVE-2023-52425, CVE-2024-28757, CVE-2026-25210, CVE-2026-32777, CVE-2026-32778, CVE-2026-32776 Dell Integrated System for Microsoft Azure Stack Hub 14G Versions prior to 2603 Version 2606 or later https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack14g/drivers

 

解决方法和缓解措施

CVE ID Workaround and Mitigation
CVE-2025-2884 The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes.
DSA-2025-232

 

修订历史记录

RevisionDateDescription
1.02026-06-25Initial Release

 

相关信息

受影响的产品

Integrated System for Microsoft Azure Stack Hub 14G, Integrated System for Microsoft Azure Stack Hub 16G
文章属性
文章编号: 000477962
文章类型: Dell Security Advisory
上次修改时间: 25 6月 2026
从其他戴尔用户那里查找问题的答案
支持服务
检查您的设备是否在支持服务涵盖的范围内。