Hpe oneview

This hub aggregates every CVE we track for Hpe oneview, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Hpe oneview.

• CVE-2025-37164A remote code execution issue exists in HPE OneView.KEV10.0Dec 16, 2025
• CVE-2025-37101HPE OneView for VMware vCenter (OV4VC), Local Elevation of Privilege8.7Jun 26, 2025
• CVE-2024-42508This vulnerability could be exploited, leading to unauthorized disclosure of information to authenticated users.5.5Oct 18, 2024
• CVE-2023-6573HPE OneView may have a missing passphrase during restore.5.5Jan 23, 2024
• CVE-2023-50275HPE OneView may allow clusterService Authentication Bypass resulting in denial of service.7.5Jan 23, 2024
• CVE-2023-50274HPE OneView may allow command injection with local privilege escalation.7.8Jan 23, 2024
• CVE-2023-30912 A remote code execution issue exists in HPE OneView. 7.2Oct 25, 2023
• CVE-2023-30909A remote authentication bypass issue exists in some OneView APIs. 9.8Sep 14, 2023
• CVE-2023-30908A remote authentication bypass issue exists in a OneView API. 9.8Sep 7, 2023
• CVE-2023-28084HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens5.5Apr 25, 2023
• CVE-2023-28090An HPE OneView appliance dump may expose SNMPv3 read credentials5.5Apr 25, 2023
• CVE-2023-28089An HPE OneView appliance dump may expose FTP credentials for c7000 Interconnect Modules7.1Apr 25, 2023
• CVE-2023-28088An HPE OneView appliance dump may expose SAN switch administrative credentials7.8Apr 25, 2023
• CVE-2023-28087An HPE OneView appliance dump may expose OneView user accounts5.5Apr 25, 2023
• CVE-2023-28086An HPE OneView appliance dump may expose proxy credential settings5.5Apr 25, 2023