Ref# ADV2024_113 | Date: Apr 18th 2024

---

HPE has published a security advisory to address vulnerabilities affecting the following products on April 14, 2024. It is recommended that you take the necessary precautions to ensure your products are always protected.

• HPE Compute Scale-up Server 3200 – versions prior to v1.20.128
• HPE Superdome Flex 280 Server – versions prior to v1.70.14
• HPE Superdome Flex Server – versions prior to v3.90.18

For more information on these updates, you can follow these URLs:

1. HPE Compute Scale-up Server 3200 server – local buffer overflow
2. HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers – Privilege Elevation and Arbitrary Code Execution

The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.

PDF Download: HPE Security Advisory

References

• HPE Security Bulletin Library. (2024, April 14). Retrieved from Hewlett Packard Enterprise. https://support.hpe.com/connect/s/securitybulletinlibrary?language=en_US#sort=%40hpescuniversaldate%20descending&layout=table&numberOfResults=25&f:@kmdoclanguagecode=[cv1871440]&hpe=1
• HPE security advisory. (2024, April 15). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-204