Dell iDRAC security update (MINDBREEZE31703)
ID: MINDBREEZE31703
Affected Components: Mindbreeze InSpire SaaS, Mindbreeze InSpire
Severity: 7.6 High
Status: Final
First published: September 04, 2024
CVEs: CVE-2024-25943, CVE-2024-21823
Summary
- session hijacking vulnerability in IPMI
- kernel: dmaengine/idxd: hardware erratum allows potential security problem with direct access by untrusted application
Hotfix Information
Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS:
- Mindbreeze InSpire SaaS 24.5 Release
- Mindbreeze InSpire 24.5 Release