Main Vulnerability Database Vulnerabilities #VU42681

#VU42681 Input validation error in HP SiteScope - CVE-2013-2367

Published: July 31, 2013 / Updated: August 11, 2020

Vulnerability identifier: #VU42681

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber

CVE-ID: CVE-2013-2367

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
HP SiteScope

Software vendor:
Hewlett Packard Enterprise Development LP

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, when SOAP is used, allow remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1678.

Remediation

Install update from vendor's website.

External links

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03861260

#VU42681 Input validation error in HP SiteScope - CVE-2013-2367

Description

Remediation

External links

Please verify you're human