DSA-2025-105 : Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

本文章適用於 本文章不適用於 本文無關於任何特定產品。 本文未識別所有產品版本。
查看其他資源

影響

Critical

詳細資料

Third-party Component

CVEs

More Information

Intel® Xeon® Processor with Intel® SGX Advisory

CVE-2024-21820, CVE-2024-23918

INTEL-SA-01079This hyperlink is taking you to a website outside of Dell Technologies.

UPLR2 - Intel® UEFI Firmware Advisory board

CVE-2024-25565

INTEL-SA-01085This hyperlink is taking you to a website outside of Dell Technologies.

UPLR2 - Intel® Xeon® Processor Advisory

CVE-2024-21853

INTEL-SA-01101This hyperlink is taking you to a website outside of Dell Technologies.

2024.3 IPU - UEFI Firmware Advisory

CVE-2024-21781, CVE-2024-21829

 INTEL-SA-01071This hyperlink is taking you to a website outside of Dell Technologies.

2024.3 IPU - Intel® Processor RAPL Interface Advisory

CVE-2024-23984

INTEL-SA-01103This hyperlink is taking you to a website outside of Dell Technologies.

2024.3 IPU - Intel® Processor Advisory

CVE-2024-24968

INTEL-SA-01097This hyperlink is taking you to a website outside of Dell Technologies.

OpenSSH

CVE-2024-6387

See the NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

UPLR1 - Intel® TDX Module Software Advisory

CVE-2024-21801

INTEL-SA-01070This hyperlink is taking you to a website outside of Dell Technologies.

UPLR1 - Intel® Xeon Processor Advisory

CVE-2024-22374


INTEL-SA-01073This hyperlink is taking you to a website outside of Dell Technologies.

Intel® Ethernet Controllers and Adapters Advisory

CVE-2024-21810, CVE-2024-23497, CVE-2024-24986, CVE-2024-21769, CVE-2024-24983

INTEL-SA-00918This hyperlink is taking you to a website outside of Dell Technologies.

Intel® Ethernet Adapter Driver Pack Software Installer Advisory

CVE-2024-22376

INTEL-SA-01106This hyperlink is taking you to a website outside of Dell Technologies.

2024.3 IPU - Intel® Xeon® Processor Advisory

CVE-2024-24980

INTEL-SA-01100This hyperlink is taking you to a website outside of Dell Technologies.

2024.3 IPU - SMI Transfer Monitor Advisory

CVE-2024-24853

INTEL-SA-01083This hyperlink is taking you to a website outside of Dell Technologies.

Nuvoton NPCM7xx (Poleg) BootBlock Package

CVE-2024-38433

See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

PowerEdge Platform

CVE-2024-38303, CVE-2024-38304

DSA-2024-309 , DSA-2024-310

Intel® TDX Module Software Advisory

CVE-2024-27457

INTEL-SA-01099This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies 建議所有客戶不僅要參考 CVSS 基本分數,也要將可能會影響與特定安全漏洞相關之潛在嚴重性的所有相關暫時和環境分數納入考量。

受影響的產品與補救措施

CVEs Addressed

Product

Affected Versions

Remediated Versions

Link

CVE-2024-21820, CVE-2024-23918, CVE-2024-25565, CVE-2024-21853, CVE-2024-24980, CVE-2024-22374, CVE-2024-21801, CVE-2024-21829, CVE-2024-23984, CVE-2024-24968, CVE-2024-27457

Integrated System for Microsoft Azure Stack Hub 16G

Versions prior to 2411

Version 2411 or later

https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

CVE-2024-38303, CVE-2024-6387, CVE-2024-22376, CVE-2024-21810, CVE-2024-23497, CVE-2024-24986, CVE-2024-21769, CVE-2024-24983, CVE-2024-21781, CVE-2024-38304

Integrated System for Microsoft Azure Stack Hub 14G

Versions prior to 2411

Version 2411 or later

https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack14g/drivers

CVE-2024-24853, CVE-2024-38433

Integrated System for Microsoft Azure Stack Hub 14G

Versions prior to 2407

Version 2407 or later

https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack14g/drivers

CVEs Addressed

Product

Affected Versions

Remediated Versions

Link

CVE-2024-21820, CVE-2024-23918, CVE-2024-25565, CVE-2024-21853, CVE-2024-24980, CVE-2024-22374, CVE-2024-21801, CVE-2024-21829, CVE-2024-23984, CVE-2024-24968, CVE-2024-27457

Integrated System for Microsoft Azure Stack Hub 16G

Versions prior to 2411

Version 2411 or later

https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

CVE-2024-38303, CVE-2024-6387, CVE-2024-22376, CVE-2024-21810, CVE-2024-23497, CVE-2024-24986, CVE-2024-21769, CVE-2024-24983, CVE-2024-21781, CVE-2024-38304

Integrated System for Microsoft Azure Stack Hub 14G

Versions prior to 2411

Version 2411 or later

https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack14g/drivers

CVE-2024-24853, CVE-2024-38433

Integrated System for Microsoft Azure Stack Hub 14G

Versions prior to 2407

Version 2407 or later

https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack14g/drivers

修訂歷史記錄

Revision

Date

Description

1.0

2025-02-27

Initial Release

2.0

2025-03-03

Advisory updated to include remediation for CVE-2024-27457

3.0

2025-03-21

Advisory updated to include remediation for CVE-2024-38304

相關資訊

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

法律免責聲明

受影響的產品

Integrated System for Microsoft Azure Stack Hub, Integrated System for Microsoft Azure Stack Hub 14G, Integrated System for Microsoft Azure Stack Hub 16G
文章屬性
文章編號: 000289879
文章類型: Dell Security Advisory
上次修改時間: 08 9月 2025
向其他 Dell 使用者尋求您問題的答案
支援服務
檢查您的裝置是否在支援服務的涵蓋範圍內。