NimbleOS versions Improper Privilege Management Vulnerability


Potential security vulnerabilities have been identified with HPE Nimble Storage systems in multi-array group configurations.


The information has been provided by Vendor

The original article can be found at:


The vulnerabilities could be exploited by an attacker to gain elevated privileges on the array. The following NimbleOS versions, and all subsequent releases, contain a software fix for this vulnerability:,, and


Vulnerable Systems:

NimbleOS versions 

NimbleOS versions

NimbleOS versions  

NimbleOS versions


CVE Information:


Disclosure Timeline:
Published Date:11/7/2019