HPE security advisory (AV26-046)

Serial number: AV26-046
Date: January 22, 2026

Between January 20 and 21, 2026, HPE published security advisories to address vulnerabilities in the following products:

• HPE Alletra 6000 – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300
• HPE Nimble Storage Hybrid Flash Arrays – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300
• Nimble Storage All Flash Arrays – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300
• HPE Alletra 5000 – versions prior to 6.1.2.800, version 6.1.3 versions prior to 6.1.3.300
• HPE ONMS Adapter – versions prior to 4.4.0-0C patch 00002

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• HPESBST04995 rev.1 - HPE Alletra 6000, HPE Alletra 5000 and HPE Nimble Storage Array OS, Remote Privilege Elevation
• HPESBNW04990 rev.1 - HPE Telco IP, Remote Stack Overflow
• HPE Security Bulletin Library