Skip to main content

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
Alerts

Critical Vulnerability in Hewlett Packard Enterprise OneView Software

22 December 2025

Hewlett Packard Enterprise has released security updates addressing a critical vulnerability in their OneView Software. Users and administrators of affected product versions are advised to update to the latest versions immediately.

Background

Hewlett Packard Enterprise (HPE) has released security updates addressing a critical vulnerability (CVE-2025-37164) affecting its OneView Software. The vulnerability has a Common Vulnerability Scoring System (CVSS v3.1) score of 10 out of 10. 

Impact

Successful exploitation of the vulnerability could allow a remote unauthenticated attacker to conduct remote code execution.

Affected Products

The vulnerability affects all HPE OneView Software versions through v10.20.

Recommendations 

Users and administrators of affected product versions are advised to update to the latest versions immediately.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-37164

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbgn04985en_us&docLocale=en_US#vulnerability-summary-1

https://myenterpriselicense.hpe.com/cwp-ui/product-details/HPE_OV_CVE_37164_Z7550-98077/-/sw_free


Back to top