Thehackernews
CISA Flags Critical HPE OneView Vulnerability as Actively Exploited
First seen 8 Jan 2026, 09:52 UTC
•



+13
•68% similarity
•54.4
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified a critical vulnerability in HPE OneView, tracked as CVE-2025-37164, as being actively exploited in attacks. This flaw affects HPE's infrastructure management software, which is used by IT administrators for managing storage, servers, and networking devices. The vulnerability was reported by Vietnamese security researcher Nguyen Quoc Khanh, leading to the release of security patches by HPE in mid-December 2025.
ThreatCluster AI