HPE OneView vulnerable to remote code execution attack | CSO Online

A critical remote code execution vulnerability (CVE-2025-37164) has been discovered in HPE OneView, affecting all versions between 5.20 and 10.20. This vulnerability can be exploited by an unauthenticated user, and there is no workaround, necessitating the immediate application of a hotfix provided by HPE.