Ref# ADV2025_227 | Date: Jul 28th 2025

---

HPE has published a security advisory highlighting vulnerabilities in the following products on July 24th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• HPE Telco Service Orchestrator – versions prior to v5.0.2 

• HPE Telco Service Orchestrator – versions prior to v4.2.1 

For more information on these updates, you can follow these URLs: 

• HPESBNW04901 rev.1 – HPE Telco Service Orchestrator, Remote Denial of Service (DoS) Vulnerability 

• HPESBNW04902 rev.1 – HPE Telco Service Orchestrator, Exposure of Sensitive Information to an Unauthorized Actor Vulnerability  

• HPE Security Bulletin Library 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

PDF Download: HPE Security Advisory

References 

• HPE Security Bulletin Library. (July 24th, 2025). Retrieved from HPE. https://support.hpe.com/connect/s/securitybulletinlibrary?language=en_US 

• HPE Security Advisory. (July 24th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av25-452