Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-4822 — HP IMC Branch Intelligent Management System Software Module vulnerability

5 documents5 sources

Severity

10.0CRITICALNVD

EPSS

74.1%

top 1.16%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

HP IMC Branch Intelligent Management System Software Module HP Intelligent Management Center

Timeline

PublishedOct 13

Latest updateMay 13

Description

Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Branch Intelligent Management System Software Module (aka BIMS) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1606.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDhp/imc_branch_intelligent_management_system_software_module5.0, 5.1, 5.2+2

▶NVDhp/intelligent_management_center5.0, 5.1, 5.2+2

🔴Vulnerability Details

GHSA

GHSA-g8p3-q392-4q77: Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Branch Intelligent Management System Software Module (aka BIMS) allows↗2022-05-13

▶

CVEList

CVE-2013-4822: Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Branch Intelligent Management System Software Module (aka BIMS) allows↗2013-10-13

▶

💥Exploits & PoCs

Exploit-DB

HP Intelligent Management Center BIms UploadServlet - Directory Traversal (Metasploit)↗2013-10-22

▶

Metasploit

HP Intelligent Management Center BIMS UploadServlet Directory Traversal↗

▶