By Emma Woollacott
Publication Date: 2026-01-09 11:31:00
He US Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about an HPE OneView maximum severity vulnerability that is being actively exploited in the wild.
Track as CVE-2025-37164This is a code injection vulnerability within an insecure REST API endpoint, the security agency noted, allowing an unauthenticated remote user to perform remote code execution.
HPE OneView is a centralized solution infrastructure management platform designed to optimize IT operations. It is widely used to deploy, monitor and manage HPE. data center hardware and software from a single global panel.
CVE-2025-37164 was first discovered last year by security researcher Nguyen Quoc Khanh, with HPE Hotfixes released December 16, 2025.
However, shortly after, Rapid7 researchers published a proof of concept exploit that would be relatively easy for less skilled attackers to exploit and potentially grant full control of affected environments.
“OneView is in a privileged position…
