Serial number: AV25-673
Date: October 16, 2025
Between October 13 and 15, 2025, HPE published security advisories to address vulnerabilities in the following products:
- HPE ProLiant RL300 Gen11 – versions prior to v1.78
- HPE ProLiant AMD Servers – multiple versions and platforms
- HPE Aruba Networking – multiple versions and platforms
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
- HPESBHF04952 rev.1 - HPE ProLiant RL300 Gen11 Server, Out-of-Bound Reads Vulnerability
- HPESBHF04956 rev.1 - Certain HPE ProLiant AMD Servers Using Certain AMD EPYC Processors, AMD-SB-3020: SEV-SNP RMP Initialization Vulnerability, Local Unauthorized Access Vulnerability
- HPESBNW04957 rev.1 - HPE Aruba Networking AOS-10 and AOS-8 Mobility Conductor, Controllers, and Gateways, Multiple Vulnerabilities
- HPESBNW04958 rev.1 - HPE Aruba Networking AOS-8 Instant AP and AOS-10 AP, Multiple Vulnerabilities
- HPE Security Bulletin Library