Browse all 450 CVE security advisories affecting Hewlett Packard Enterprise (HPE). AI-powered Chinese analysis, POCs, and references for each vulnerability.
Hewlett Packard Enterprise (HPE) operates as a critical infrastructure provider, designing and selling servers, storage, networking hardware, and associated software solutions for enterprise data centers. With 418 recorded CVEs, the company’s attack surface primarily involves its managed services and hardware management interfaces. Historically, common vulnerability classes include remote code execution (RCE) and cross-site scripting (XSS), often stemming from web-based management consoles like HPE OneView or iLO. Privilege escalation flaws also appear frequently, allowing unauthorized users to gain administrative control over managed devices. Notable incidents have included credential exposure and insecure default configurations in firmware updates, which attackers exploited to pivot into internal networks. These weaknesses highlight the risks inherent in complex, interconnected enterprise ecosystems where management planes are often targeted. The high volume of vulnerabilities underscores the necessity for rigorous patch management and strict access controls across HPE’s extensive product portfolio to mitigate potential systemic breaches.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-31475 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 8.2 | High | 2024-05-14 |
| CVE-2024-31474 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 8.2 | High | 2024-05-14 |
| CVE-2024-31473 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31472 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31471 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31470 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31469 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31468 | Aruba Networks ArubaOS 和 InstantOS 安全漏洞 — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31467 | Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-31466 | Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol — AOS-8 Instant and AOS-10 AP | 9.8 | Critical | 2024-05-14 |
| CVE-2024-33518 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 5.3 | Medium | 2024-05-01 |
| CVE-2024-33517 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 5.3 | Medium | 2024-05-01 |
| CVE-2024-33516 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 5.3 | Medium | 2024-05-01 |
| CVE-2024-33515 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 5.3 | Medium | 2024-05-01 |
| CVE-2024-33514 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 5.3 | Medium | 2024-05-01 |
| CVE-2024-33513 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 5.9 | Medium | 2024-05-01 |
| CVE-2024-33512 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 9.8 | Critical | 2024-05-01 |
| CVE-2024-33511 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 9.8 | Critical | 2024-05-01 |
| CVE-2024-26305 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 9.8 | Critical | 2024-05-01 |
| CVE-2024-26304 | Aruba Networks ArubaOS 安全漏洞 — Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central | 9.8 | Critical | 2024-05-01 |
| CVE-2024-26303 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS-S Switch | 4.9 | Medium | 2024-03-26 |
| CVE-2024-22436 | Hewlett Packard Enterprise IceWall Agent 安全漏洞 — IceWall Gen11, IceWall SSO Agent | 6.5 | Medium | 2024-03-26 |
| CVE-2024-25616 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 3.7 | Low | 2024-03-05 |
| CVE-2024-25615 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 5.3 | Medium | 2024-03-05 |
| CVE-2024-25614 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 5.5 | Medium | 2024-03-05 |
| CVE-2024-25613 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 7.2 | High | 2024-03-05 |
| CVE-2024-25612 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 7.2 | High | 2024-03-05 |
| CVE-2024-25611 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 7.2 | High | 2024-03-05 |
| CVE-2024-1356 | Aruba Networks ArubaOS 安全漏洞 — ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | 7.2 | High | 2024-03-05 |
| CVE-2024-26302 | Aruba Networks ClearPass Policy Manager 安全漏洞 — Aruba ClearPass Policy Manager | 4.8 | Medium | 2024-02-27 |
This page lists every published CVE security advisory associated with Hewlett Packard Enterprise (HPE). Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.