CVE-2025-37101

HPE OneView for VMware vCenter (OV4VC), Local Elevation of Privilege

CVSS 8.7 HIGHEPSS 0.3%CWE-269

A potential security vulnerability has been identified in HPE OneView for VMware vCenter (OV4VC). This vulnerability could be exploited allowing an attacker with read only privilege to cause Vertical Privilege Escalation (operator can perform admin actions).

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H

Produtos afetados

Hewlett Packard Enterprise · HPE OneView for VMware vCenter

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbgn04876en_us&docLocale=en_US