Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-1549

5 documents4 sources

Severity

10.0CRITICAL

EPSS

88.8%

top 0.48%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

HP Loadrunner HP Performance Center

Timeline

PublishedMay 7

Latest updateMay 14

Description

Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 and HP Performance Center before 9.50 allows remote attackers to execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDhp/performance_center9.0

▶NVDhp/loadrunner9.10+11

🔴Vulnerability Details

GHSA

GHSA-xqh3-mrp7-2g29: Unspecified vulnerability in the Agent in HP LoadRunner before 9↗2022-05-14

▶

CVEList

CVE-2010-1549: Unspecified vulnerability in the Agent in HP LoadRunner before 9↗2010-05-07

▶

💥Exploits & PoCs

Exploit-DB

HP Mercury LoadRunner Agent magentproc.exe - Remote Command Execution (Metasploit)↗2018-01-01

▶

Exploit-DB

Blog System 1.x - 'note' SQL Injection↗2010-01-21

▶