HPE Alert
2792Warning Date
Severity Level
Warning Number
Target Sector
30 June, 2022
● High
2022-5019
All
HPE has released a security update to address several vulnerabilities in the following products:
- HPE SimpliVity 170r Gen10 Server
- Prior to 2.66_05_17_2022 - Use BIOS family U38
- HPE SimpliVity 190r Gen10 Server
- Prior to 2.66_05_17_2022 - Use BIOS family U38
- HPE SimpliVity 380 Gen10
- Prior to 2.66_05_17_2022 - Use BIOS family U30
- HPE SimpliVity 380 Gen10 G
- Prior to 2.66_05_17_2022 - Use BIOS family U30
- HPE SimpliVity 380 Gen10 H
- Prior to 2.66_05_17_2022 - Use BIOS family U30
- HPE SimpliVity 380 Gen9
- Prior to 2.96_05_17_2022 - Use BIOS family P89
Attacker could exploit these vulnerabilities by doing the following:
- Sensitive information disclosure
- Unauthorized access
- Escalation of Privilege
The CERT team encourages users to review HPE security advisory and apply the necessary updates: