https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244700#M10321 <P>Given the severity of the vulnerability, will workarounds or patches be made available for older releases that some may have for legacy systems?</P> Mon, 16 Jun 2025 15:28:46 GMT tirtul 2025-06-16T15:28:46Z https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244050#M10297 <DIV id="ddw-hc-container" class="header-wrapper">VULNERABILITY SUMMARY</DIV> <P><LI-WRAPPER></LI-WRAPPER></P> <P>Potential security vulnerabilities have been identified in Hewlett Packard Enterprise OneView Software. These vulnerabilities could be exploited allowing a remote attacker to cause a denial of service, code execution or source code disclosure, information disclosure, server-side request forgery (SSRF), and local script execution.<BR /><BR /><SPAN>Click the link below from HPE Support Center to get detailed information:<BR /><BR /></SPAN><A href="https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbgn04853en_us&amp;docLocale=en_US#hpesbg04853-rev1---hpe-oeview-multiple-local-ad-remote-vulerabilities" target="_blank" rel="noopener"><U><STRONG>HPESBGN04853 rev.1 - HPE OneView, Multiple Local and Remote Vulnerabilities</STRONG></U></A></P> Tue, 03 Jun 2025 08:33:23 GMT https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244050#M10297 Thaufique_Mod 2025-06-03T08:33:23Z https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244700#M10321 <P>Given the severity of the vulnerability, will workarounds or patches be made available for older releases that some may have for legacy systems?</P> Mon, 16 Jun 2025 15:28:46 GMT https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244700#M10321 tirtul 2025-06-16T15:28:46Z https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244772#M10328 <P>Product manage has shared in our partner-facing slack channel that there are no plans to update prior releases at this time.</P><P>&nbsp;</P> Tue, 17 Jun 2025 13:34:12 GMT https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244772#M10328 DanCernese 2025-06-17T13:34:12Z https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244914#M10329 <P>Thanks for the heads-up. Important reminder to stay on top of updates — especially with vulnerabilities like SSRF and code execution in the mix. Will review the advisory and patch ASAP.</P> Thu, 19 Jun 2025 06:20:07 GMT https://community.hpe.com/t5/hpe-oneview/hpe-oneview-security-update/m-p/7244914#M10329 Kearawill 2025-06-19T06:20:07Z