Dell Product Security Update Advisory (CVE-2025-23374)

Overview

We have released security updates to fix vulnerabilities in Dell products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2025-23374

Dell Enterprise SONiC Distribution Versions: ~4.4.1 (excluded)
Dell Enterprise SONiC Distribution Version: ~4.2.3 (excluded)

 

Resolved Vulnerabilities

Sensitive information is injected into logfiles (CVE-2025-23374)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2025-23374

Dell Enterprise SONiC Distribution version: 4.4.1 or at least
Dell Enterprise SONiC Distribution versions: 4.2.3 and at least

 

 

References

[1] DSA-2025-057: Security Update for Dell Enterprise SONiC Distribution Vulnerability
https://www.dell.com/support/kbdoc/ko-kr/000278568/dsa-2025-057-security-update-for-dell-enterprise-sonic-distribution-vulnerability