CVE-2013-4835
published 2013-11-04CVE-2013-4835: The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
EXPLOIT
The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |
| hp | sitescope | — | — |