Ref# ADV2024_218 | Date: Jul 3rd 2024

---

HPE has published a security advisory highlighting vulnerabilities in the following products on June 28th, 2024. It is recommended that you take the necessary precautions by ensuring your products are always updated.

• HPE ProLiant DL325 Gen10 Plus server – versions prior to 2.84 (HFP 23.9)
• HPE ProLiant DL385 Gen10 Plus server – versions prior to 2.84 (HFP 23.9)
• HPE ProLiant XL645d Gen10 Plus Server – versions prior to 2.84 (HFP 23.9)
• HPE ProLiant XL675d Gen10 Plus Server – versions prior to 2.84 (HFP 23.9)
• HPE Cray EX235a Accelerator Blade – versions prior to 1.8.0 (HFP 24.3.1)
• HPE Cray EX235n Server – versions prior to 1.3.1 (HFP 23.9)
• HPE Cray EX425 Compute Blade – versions prior to 1.7.2 (HFP 23.9) Gen 2, and Gen 3 EPYC Processors
• HPE Cray EX4252 Compute Blade – versions prior to 1.4.0 (HFP 23.8)

For more information on these updates, you can follow this URL:
HPE Security Bulletin – hpesbcr04657en_us

The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.

PDF Download: HPE Security Advisory

References

• HPE Security Bulletin Library. (June 28th, 2024). Retrieved from HPE.
  https://support.hpe.com/connect/s/securitybulletinlibrary?language=en_US
• HPE Security Advisory. (June 28th, 2024). Retrieved from Canadian Centre for Cyber Security.
  https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-358