美国网络安全和基础设施安全局（CISA）近日在其已知被利用漏洞目录中新增了两个安全漏洞，警告攻击者正在滥用HPE OneView管理软件中的最高严重级别漏洞以及微软Office中一个存在多年的缺陷。 CISA最新更新的已知被利用漏洞目录标记了CVE-2025-37164（HPE OneView中的 ...

I've got a small amount of HPE equipment which needs regular firmware updates, and I've been looking at the HPE OneView appliance to do this. I'm a bit confused though - do I need a separate install ...

HPE patches critical RCE flaw (CVE‑2025‑37164) in OneView, severity 10/10 Exploitation could allow attackers to reconfigure servers, deploy malware, or create persistent backdoors Users must upgrade ...

An unauthenticated user can execute the attack, and there’s no mitigation, just a hotfix that should be applied immediately. A maximum severity remote code execution vulnerability in Hewlett Packard ...

A critical security vulnerability has been discovered in HPE OneView, allowing attackers to inject and execute malicious code. As this is possible from the internet without prior authentication, the ...

A maximum-severity vulnerability in OneView, HPE's software-defined management platform, has come under attack, according to the Cybersecurity and Infrastructure Security Agency (CISA). CVE-2025-37164 ...

The Cybersecurity and Infrastructure Security Agency (CISA) has warned a critical vulnerability in software from Hewlett Packard Enterprise (HPE) is being actively exploited. A bug in the ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged a maximum-severity HPE OneView vulnerability as actively exploited in attacks. Hewlett Packard Enterprise (HPE) has patched ...