Hewlett Packard Enterprise (HPE) SiteScope

HP released a patch to address multiple vulnerabilities within HPE SiteScope v11.2x and v11.3x. If exploited, these vulnerabilities could be used by a malicious actor to bypass security restrictions, gain access to sensitive information, and remotely execute arbitrary code. The NJCCIC recommends administrators of HPE SiteScope review HP Security Bulletin HPESBGN03763 1 and apply the necessary updates.