CVE-2013-4801

2013-07-2913:59:14

[email protected]

web.nvd.nist.gov

hp loadrunner

vulnerability

remote attack

arbitrary code

cve-2013-4801

nvd

zdi-can-1736

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.335 Low

EPSS

Percentile

97.1%

JSON

Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1736.

Affected configurations

NVD

Node

hploadrunnerRange≤11.51

hploadrunnerMatch9.0.0

hploadrunnerMatch9.50.0

hploadrunnerMatch9.51

hploadrunnerMatch9.52

hploadrunnerMatch11.0.0.0

hploadrunnerMatch11.50

CPENameOperatorVersion
hp:loadrunnerhp loadrunnerle11.51
hp:loadrunnerhp loadrunnereq9.0.0
hp:loadrunnerhp loadrunnereq9.50.0
hp:loadrunnerhp loadrunnereq9.51
hp:loadrunnerhp loadrunnereq9.52
hp:loadrunnerhp loadrunnereq11.0.0.0
hp:loadrunnerhp loadrunnereq11.50

CPE	Name	Operator	Version
hp:loadrunner	hp loadrunner	le	11.51
hp:loadrunner	hp loadrunner	eq	9.0.0
hp:loadrunner	hp loadrunner	eq	9.50.0
hp:loadrunner	hp loadrunner	eq	9.51
hp:loadrunner	hp loadrunner	eq	9.52
hp:loadrunner	hp loadrunner	eq	11.0.0.0
hp:loadrunner	hp loadrunner	eq	11.50