HPE Security Advisory (8th August 2024)

Ref# ADV2024_264 | Date: Aug 8th 2024

HPE has published a security advisory to address vulnerabilities affecting the following products between 1st and 6th of August 2024. It is recommended that you take the necessary precautions to ensure your products are always protected.

  • HPE Athonet Mobile Core – versions 1.24.1.1 and prior and versions 1.23.4.2 and prior
  • HPE Athonet IMS – versions 1.24.1.1 and prior
  • HPE Telecommunication Management Information Platform – versions 8.3.x and 8.4.x
  • Brocade 32Gb Fibre Channel SAN Switch for HPE Synergy – versions prior to v9.1.1d2, v9.2.0b1 and v9.2.1
  • HPE SAN Director Switch – multiple models and versions prior to v9.1.1d2, v9.2.0b1 and v9.2.1
  • HPE B-series SN2600B SAN Extension Switch – versions prior to v9.1.1d2, v9.2.0b1 and v9.2.1
  • HPE B-series SN4700B SAN Extension Switch – versions prior to v9.1.1d2, v9.2.0b1 and v9.2.1
  • HPE B-series Fibre Channel Switch – multiple models and versions prior to v9.1.1d2, v9.2.0b1 and v9.2.1

For more information on these updates, you can follow these URLs:

  1. HPE Athonet Unauthenticated Remote Code Execution (RCE) Vulnerability in OpenSSH’s Server (RegreSSHion)
  2. HPE Telecommunication Management Information Platform (vTeMIP) – Multiple Vulnerabilities
  3. HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) – Multiple Vulnerabilities

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: HPE Security Advisory

References