Ref# ADV2026_28 | Date: Jan 23rd 2026

---

HPE published a security advisory highlighting vulnerabilities in the following products between January 20th and 21st, 2026. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• HPE Alletra 6000 – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300 

• HPE Nimble Storage Hybrid Flash Arrays – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300 

• Nimble Storage All Flash Arrays – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300 

• HPE Alletra 5000 – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300 

• HPE ONMS Adapter – versions prior to 4.4.0-0C patch 00002 

 

For more information on these updates, you can follow these URLs: 

• HPESBST04995 rev.1 – HPE Alletra 6000, HPE Alletra 5000 and HPE Nimble Storage Array OS, Remote Privilege Elevation 

• HPESBNW04990 rev.1 – HPE Telco IP, Remote Stack Overflow 

• HPE Security Bulletin Library 

 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

 PDF Download: HPE Security Advisory

References 

• HPESBST04995 rev.1 – HPE Alletra 6000, HPE Alletra 5000 and HPE Nimble Storage Array OS, Remote Privilege Elevation. (January 21, 2026). Retrieved from HPE. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04995en_us&docLocale=en_US#hpesbst04995-rev-1-hpe-alletra-6000-hpe-alletra-50-0 

 

• HPESBNW04990 rev.1 – HPE Telco IP, Remote Stack Overflow. (January 21, 2026). Retrieved from HPE. https://HPE.com/security/notichttps://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04990en_us&docLocale=en_US#hpesbnw04990-rev-1-hpe-telco-ip-remote-stack-overf-0es 

 

• HPE Security Bulletin Library. (n.b). Retrieved from HPE. https://support.hpe.com/connect/s/securitybulletinlibrary?language=en_US 

 

• HPE security advisory. (January 21, 2026). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av26-046