Main Vulnerability Database SB2025060654

SB2025060654 - Multiple vulnerabilities in Certain HPE StoreEasy Servers Using Certain Intel Processors

Published: June 6, 2025

Security Bulletin ID SB2025060654

Severity

Low

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Resource management error (CVE-ID: CVE-2025-20103)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient resource pool in the core management mechanism for some Intel Processors. A local user can perform a denial of service (DoS) attack.

2) Uncaught Exception (CVE-ID: CVE-2025-20054)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an uncaught exception in the core management mechanism for some Intel Processors. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04862en_us