腾讯网

CISA警告HPE OneView和微软Office漏洞正被活跃利用

美国网络安全和基础设施安全局(CISA)近日在其已知被利用漏洞目录中新增了两个安全漏洞,警告攻击者正在滥用HPE OneView管理软件中的最高严重级别漏洞以及微软Office中一个存在多年的缺陷。 CISA最新更新的已知被利用漏洞目录标记了CVE-2025-37164(HPE OneView中的 ...
heise online

HPE OneView: Critical vulnerability allows code smuggling from the network

A critical security vulnerability has been discovered in HPE OneView, allowing attackers to inject and execute malicious code. As this is possible from the internet without prior authentication, the ...
TechRadar

HPE tells customers to patch OneView immediately as top-level security flaw spotted

HPE patches critical RCE flaw (CVE‑2025‑37164) in OneView, severity 10/10 Exploitation could allow attackers to reconfigure servers, deploy malware, or create persistent backdoors Users must upgrade ...