CVE-2022-23699

Name of the Vulnerable Software and Affected Versions HPE OneView versions prior to 6.6

Description A local authentication restriction bypass issue was found, related to weaknesses in the authentication procedure. This could allow an attacker to bypass existing security restrictions. HPE has provided a software update to resolve this issue.

Recommendations For versions prior to 6.6, update to version 6.6 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of HPE OneView until the update can be applied.