Ref# ADV2024_238 | Date: Jul 17th 2024

---

HPE has published a security advisory to address vulnerabilities affecting the following products between July 11 and 17, 2024. It is recommended that you take the necessary precautions to ensure your products are always protected.

• HPE Aruba Networking – multiple products and versions
• HPE CrayXD665 – versions prior to BMC 1.14
• HPE CrayXD670 – versions prior to BMC 1.14
• HPE Moonshot1500 2.0 Chassis Manager Module – versions prior to v4.0-b43
• HPE Unified Console versions prior to v3.1.6
• HPE 3PAR Service Processor – versions v5.1.1 and prior

For more information on these updates, you can follow these URLs:

1. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04662en_us&docLocale=en_US
2. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbcr04667en_us&docLocale=en_US
3. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04668en_us&docLocale=en_US
4. https://www.cyber.gc.ca/en/alerts-advisories/radius-protocol-susceptible-forgery-attacks
5. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbgn04665en_us&docLocale=en_US
6. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04663en_us&docLocale=en_US 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: HPE Security Advisory

References

• HPE Security Bulletin Library. (2024, July 17). Retrieved from HPE.  https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-395
• HPE security advisory. (2024, July 16). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-393
• HPE security advisory. (2024, July 16). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-395
• HPE security advisory. (2024, July 17). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-399