CISA Flags HPE OneView Flaw as Actively Exploited

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) flags a high-severity HPE OneView vulnerability as being actively exploited in the wild, raising concerns for organizations using the infrastructure management platform. The agency added the flaw to its Known Exploited Vulnerabilities catalog, a list that prioritizes weaknesses currently targeted by malicious actors.

HPE OneView, used to manage servers, storage, and networking in data centers, now faces heightened scrutiny from cybersecurity professionals. CISA’s alert emphasizes that attackers are leveraging the vulnerability, which carries the maximum severity score, to gain unauthorized access or disrupt critical systems.

Organizations are urged to apply necessary updates or mitigations immediately to reduce exposure. This inclusion signals that threat actors are not only aware of the vulnerability but are already exploiting it for malicious purposes.

CISA flags HPE OneView flaws like this to ensure swift action from administrators.

Read the full report for detailed guidance:
https://www.bleepingcomputer.com/news/security/cisa-tags-max-severity-hpe-oneview-flaw-as-actively-exploited/