Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-2367HP Sitescope vulnerability

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
83.8%
top 0.70%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
HP Sitescope
Timeline
PublishedJul 31
Latest updateMay 13

Description

Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, when SOAP is used, allow remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1678.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDhp/sitescope11.20, 11.21+1

🔴Vulnerability Details

2
GHSA
GHSA-x8p9-cjx3-wx24: Multiple unspecified vulnerabilities in HP SiteScope 112022-05-13
CVEList
CVE-2013-2367: Multiple unspecified vulnerabilities in HP SiteScope 112013-07-31

💥Exploits & PoCs

1
Exploit-DB
HP SiteScope (Windows) - Remote Code Execution (Metasploit)2013-09-10
CVE-2013-2367 — HP Sitescope vulnerability | cvebase