HPE security advisory (AV24-016)

From: Canadian Centre for Cyber Security

Serial number: AV24-016
Date: January 9, 2024

On January 9, 2024, HPE published a security advisory to address vulnerabilities in the following product:

  • HPE OneView - versions prior to 8.70

Exploitation of these vulnerabilities could allow server-side request forgery (SSRF), local privilege escalation, remote code execution, cause a denial of service or an unauthorized restore.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: