Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-4837

4 documents4 sources

Severity

10.0CRITICAL

EPSS

75.6%

top 1.10%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

HP Loadrunner

Timeline

PublishedNov 4

Latest updateMay 13

Description

Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1832.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/loadrunner11.51+6

🔴Vulnerability Details

GHSA

GHSA-4529-7wqq-6324: Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11↗2022-05-13

▶

CVEList

CVE-2013-4837: Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11↗2013-11-04

▶

💥Exploits & PoCs

Exploit-DB

HP LoadRunner EmulationAdmin - Web Service Directory Traversal (Metasploit)↗2013-12-11

▶