CIRT.GY | HPE Security Advisory (December 8th, 2025)

HPE Security Advisory (December 8th, 2025)

Ref# ADV2025_407 | Date: Dec 8th 2025

HPE published a security advisory highlighting vulnerabilities in the following products on December 2nd, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated.

HPE TeMIP – version 8.5.0

HPE Telco Unified OSS Console – versions prior to v3.1.17

HPE Telco Network Function Virtual Orchestrator – versions v7.4.0 and prior

For more information on these updates, you can follow these URLs:

HPESBNW04976 rev.1 - HPE Virtualized Telecommunication Management Information Platform (vTeMIP), Multiple Vulnerabilities

HPESBNW04974 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

HPESBNW04972 Rev. 1 - HPE Telco Network Function Virtual Orchestrator, Multiple Vulnerabilities

HPE Security Bulletin Library

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

References

HPESBNW04976 rev.1 – HPE Virtualized Telecommunication Management Information Platform (vTeMIP), Multiple Vulnerabilities. (December 02, 2025). Retrieved from HPE.
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04976en_us&docLocale=en_US#hpesbnw04976-rev-1-hpe-virtualized-telecommunicati-0

HPESBNW04974 rev.1 – HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities. (December 02, 2025). Retrieved from HPE.
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04974en_us&docLocale=en_US#hpesbnw04974-rev-1-hpe-unified-oss-console-assuran-0

HPESBNW04972 Rev. 1 – HPE Telco Network Function Virtual Orchestrator, Multiple Vulnerabilities. (December 02, 2025). Retrieved from HPE.
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04972en_us&docLocale=en_US#hpesbnw04972-rev-1-hpe-telco-network-function-virt-0

HPE security advisory. (December 03, 2025). Retrieved from Canadian Centre for Cyber Security.
HPE security advisory (AV25-801) – Canadian Centre for Cyber Security