HPE: ❗ Critical Security Advisory: Multiple Vulnerabilities in HPE Telco Suite ⚠️❗
HPE Security Advisory Published Date: June 10, 2026 Advisory Summary HPE has released an important security bulletin (HPESBNW05061 rev.1) identifying multiple vulnerabilities affecting the HPE Telco Suite. These vulnerabilities could potentially compromise telecommunication infrastructure relying on this suite, posing risks ranging from unauthorized access to disruption of critical network services. IT professionals managing HPE Telco […]
HPE: ❗️ Security Advisory: Local Disclosure of Privileged Information on HPE RL300 Servers Using Arm Processors
HPE Security Advisory Published Date: June 10, 2026 Advisory Summary Hewlett Packard Enterprise has released an important security bulletin (HPESBHF05057 rev.1) addressing a vulnerability affecting the HPE RL300 server line powered by Arm processors. The issue involves the potential for local attackers to disclose privileged information, posing a risk to confidential data residing on affected […]
HPE: 📅 Published on June 9, 2026
HPE Security Advisory Published Date: June 9, 2026 CVE: CVE-2026-42945 Advisory Summary ❗️ Security Alert: NGINX ngxhttprewritemodule Vulnerability (CVE-2026-42945) in HPE Aruba Networking Products HPE has released an important update regarding the critical vulnerability CVE-2026-42945 found in the NGINX ngxhttprewritemodule impacting their Aruba Networking product line. This vulnerability could potentially allow attackers to manipulate HTTP […]
HPE: ▶️ Security Advisory: AMD Secure Processor Memory Access Vulnerability in HPE ProLiant AMD Servers
HPE Security Advisory Published Date: June 10, 2026 Advisory Summary HPE has released bulletin HPESBHF05065 rev.1, addressing a critical vulnerability identified as AMD-SB-3039 impacting certain HPE ProLiant servers equipped with specific AMD EPYC processors. This flaw involves the AMD Secure Processor (ASP), which exhibits non-coherent memory access behavior that could potentially be exploited to bypass […]
FORTINET: 📅 Published on March 11, 2025 (Revised May 25, 2026)
FORTINET Security Advisory Published Date: March 11, 2025 (Revised May 25, 2026) CVE: CVE-2025-26466 Advisory Summary ❗️ Security Alert: Pre-authentication Denial of Service Vulnerability in OpenSSH (CVE-2025-26466) Fortinet has identified a significant pre-authentication Denial of Service (DoS) vulnerability in the OpenSSH package, tracked as CVE-2025-26466, with a CVSSv3 severity score of 5.9. The flaw involves […]
FORTINET: 📅 Published on November 18, 2025 (Revised May 27, 2026)
FORTINET Security Advisory Published Date: November 18, 2025 (Revised May 27, 2026) Advisory Summary ⚠️ Improper Privilege Management Vulnerability in Fortinet Infrastructure ⚠️ Fortinet has identified a low-severity security vulnerability (CVSSv3 score: 1.8) affecting FortiOS, FortiProxy, and FortiPAM products. This Improper Privilege Management issue (CWE-269) enables an authenticated administrator to circumvent the trusted host policy […]
FORTINET: FortiOS Logging Sensitive 2FA Data
FORTINET Security Advisory Published Date: October 14, 2025 | Revised June 8, 2026 Advisory Summary A newly identified vulnerability in FortiOS, rated with a CVSSv3 score of 2.6, involves the insertion of sensitive two-factor authentication (2FA) information into log files and the output of diagnostic commands. This CWE-532 weakness could potentially expose sensitive 2FA details […]
FORTINET: ▶️ Critical Second-Order OS Command Injection in FortiSandbox Web UI
FORTINET Security Advisory Published Date: June 9, 2026 Advisory Summary Fortinet has disclosed a severe security vulnerability (CVSSv3 score 9.1) affecting FortiSandbox, including FortiSandbox Cloud and PaaS Web UI versions. This flaw stems from improper neutralization of OS command elements (CWE-78), leading to a second-order OS command injection risk. Exploitation can allow unauthenticated attackers to […]
FORTINET: 🛑 Restricted CLI Escape Using Lua in FortiOS and FortiProxy
FORTINET Security Advisory Published Date: June 9, 2026 Advisory Summary A significant security concern has been identified in Fortinet’s FortiOS and FortiProxy platforms involving an Internal Asset exposed to an Unsafe Debug Access Level or State (CWE-1244). This vulnerability permits an authenticated administrator to execute Lua scripts through specifically crafted CLI commands, potentially leading to […]
FORTINET: 📅 Published on June 9, 2026
FORTINET Security Advisory Published Date: June 9, 2026 Advisory Summary 🔔 Security Alert: Improper Access Control in FortiPortal API Endpoints Fortinet has disclosed a vulnerability rated with a CVSSv3 score of 6.2 affecting FortiPortal API endpoints. The issue arises from improper access control (CWE-284), which could enable a remote attacker, possessing an organization user role, […]