DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

詳細文章

影響

受影響的產品與補救措施

因應措施與緩解措施

修訂歷史記錄

相關資訊

法律免責聲明

受影響的產品

提供意見反應

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

本文章適用於本文章不適用於本文無關於任何特定產品。本文未識別所有產品版本。

查看其他資源

影響

High

詳細資料

Third-party Component	CVEs	More Information
Intel 2025.2 IPU	CVE-2025-20109, CVE-2025-20044	DSA-2025-156
Intel Processors	CVE-2024-33607, CVE-2025-24324, CVE-2025-23241, CVE-2025-24303, CVE-2025-22836, CVE-2025-24484, CVE-2025-22893, CVE-2025-20093, CVE-2025-24325	DSA-2025-324
Intel 2025.3 IPU for PowerEdge R760 and PowerEdge R660	CVE-2025-20613, CVE-2025-22853, CVE-2025-21096	DSA-2025-297
Dell iDRAC9 Arbitrary File Export - Integrated Dell Remote Access Controller 9	CVE-2025-22397	DSA-2025-376

Dell Technologies 建議所有客戶不僅要參考 CVSS 基本分數，也要將可能會影響與特定安全漏洞相關之潛在嚴重性的所有相關暫時和環境分數納入考量。

受影響的產品與補救措施

Product	Affected Versions	Remediated Versions	Link
Dell Integrated System for Microsoft Azure Stack Hub 16G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers
Dell Integrated System for Microsoft Azure Stack Hub 14G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

Product	Affected Versions	Remediated Versions	Link
Dell Integrated System for Microsoft Azure Stack Hub 16G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers
Dell Integrated System for Microsoft Azure Stack Hub 14G	Versions prior to 2508	Version 2508 or later	https://www.dell.com/support/product-details/product/cloud-for-microsoft-azure-stack16g/drivers

因應措施與緩解措施

CVE ID	Workaround and Mitigation
CVE-2025-2884	The TPM component used in Azure Stack Hub does not have a mechanism for updates through Hub releases. Customer must contact support to upgrade the TPM on the nodes. DSA-2025-232

修訂歷史記錄

Revision	Date	Description
1.0	2025-10-13	Initial Release
2.0	2025-11-13	Added CVE-2025-22397 to the remediated table

法律免責聲明

受影響的產品

Integrated System for Microsoft Azure Stack Hub, Integrated System for Microsoft Azure Stack Hub 14G, Integrated System for Microsoft Azure Stack Hub 16G

文章編號: 000379435

文章類型: Dell Security Advisory

上次修改時間: 13 11月 2025

檢查您的裝置是否在支援服務的涵蓋範圍內。

DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...

影響

詳細資料

受影響的產品與補救措施

因應措施與緩解措施

修訂歷史記錄

相關資訊

法律免責聲明

受影響的產品

文章屬性

向其他 Dell 使用者尋求您問題的答案

支援服務

文章屬性

向其他 Dell 使用者尋求您問題的答案

支援服務

DSA-2025-380: Security Update for Dell Integrated System for Microsoft Azure Stack Hub Multiple Third-Party Component Vulnerabilities

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ... 檢視更多內容 檢視較少內容

詳細文章

影響

詳細資料

受影響的產品與補救措施

因應措施與緩解措施

修訂歷史記錄

相關資訊

法律免責聲明

受影響的產品

影響

詳細資料

受影響的產品與補救措施

因應措施與緩解措施

修訂歷史記錄

相關資訊

法律免責聲明

受影響的產品

文章屬性

向其他 Dell 使用者尋求您問題的答案

支援服務

文章屬性

向其他 Dell 使用者尋求您問題的答案

支援服務

摘要: Dell Integrated System for Microsoft Azure Stack Hub remediation is available for Multiple Third-Party Component Vulnerabilities that could be exploited by malicious users to compromise the affected system. ...