Ref# ADV2024_94 | Date: Apr 3rd 2024

---

HPE has published a security advisory to address vulnerabilities affecting the following products on April 1 and 2, 2024. It is recommended that you take the necessary precautions to ensure your products are always protected.

• HPE NonStop Web ViewPoint Enterprise – multiple versions and platforms
• HPE Alletra – multiple versions and platforms
• HPE Apollo – multiple versions and platforms
• HPE Edgeline – multiple versions and platforms
• HPE Compute Edge Server e930t – versions prior to v2.16_03-01-2024
• HPE ProLiant – multiple versions and platforms
• HPE Synergy – multiple versions and platforms

For more information on these updates, you can follow these URLs:

1. HPE NonStop Web ViewPoint Enterprise software – Unauthorized access
2. HPE ProLiant DL/ML/SY/RL/XL/Edgeline Servers Using BIOS (PixieFail) – Multiple Vulnerabilities

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: HPE Security Advisory

References

• HPE Security Bulletin Library. (2024, April 1-2). Retrieved from Hewlett Packard Enterprise. https://support.hpe.com/connect/s/securitybulletinlibrary?language=en_US#sort=%40hpescuniversaldate%20descending&layout=table&numberOfResults=25&f:@kmdoclanguagecode=[cv1871440]&hpe=1
• HPE security advisory. (2024, April 1). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-173
• HPE security advisory. (2024, April 2). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av24-175