美国网络安全和基础设施安全局（CISA）近日在其已知被利用漏洞目录中新增了两个安全漏洞，警告攻击者正在滥用HPE OneView管理软件中的最高严重级别漏洞以及微软Office中一个存在多年的缺陷。

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged a maximum-severity HPE OneView vulnerability as ...

CISA warns that CVE-2025-37164, a maximum-severity HPE OneView vulnerability leading to remote code execution, has been ...

Exploitation of CVE-2025-37164 can enable remote code execution on HPE's IT infrastructure management platform, leading to ...

The flaw allows remote code execution via a public REST API, giving attackers a direct path to compromise enterprise ...

A bug in the software-defined infrastructure management platform HPE OneView allows for remote code execution by threat ...

CISA adds two vulnerabilities affecting Microsoft Office and HPE OneView to its KEV list, urging agencies to patch by January ...

Attackers are exploiting a malicious code vulnerability in HPE OneView. PowerPoint is exclusively attacked on macOS.

The latest update to CISA's Known Exploited Vulnerabilities catalog flags CVE-2025-37164, a code injection vulnerability in ...

Hewlett Packard Enterprise (HPE) has patched a maximum-severity vulnerability in its HPE OneView software that enables attackers to execute arbitrary code remotely. OneView is HPE's infrastructure ...