Security News > 2020 > October > HPE Patches Two Critical, Remotely Exploitable Vulnerabilities
Hewlett Packard Enterprise has released patches for two critical vulnerabilities, one identified in StoreServ Management Console and the other affecting BlueData EPIC Software Platform and Ezmeral Container Platform.
The most severe of these issues was identified in HPE StoreServ Management Console 3.7.0.0 and could be exploited to remotely bypass authentication protections.
According to HPE, only HPE 3PAR StoreServ Management and Core Software Media prior to 3.7.0.0 are impacted.
Affected users are advised to upgrade to HPE 3PAR StoreServ Management Console 3.7.1.1 or later to ensure they are not exposed to attacks.
Last week, HPE also released patches for several high-severity vulnerabilities in Aruba CX Switches, Aruba AirWave Glass, and several other Aruba products.
News URL
Related news
- GitLab patches critical authentication bypass vulnerabilities (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- OpenAI now pays researchers $100,000 for critical vulnerabilities (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)
- Adobe Patches 11 Critical ColdFusion Flaws Amid 30 Total Vulnerabilities Discovered (source)
- Most critical vulnerabilities aren’t worth your attention (source)