Lucene search
HistoryNov 04, 2013 - 4:55 p.m.
CVE-2013-4835
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.7 High
AI Score
Confidence
Low
0.97 High
EPSS
Percentile
99.8%
The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.
Affected configurations
Node
hpsitescopeMatch10.11
ORhpsitescopeMatch10.13
ORhpsitescopeMatch11.01
ORhpsitescopeMatch11.1
ORhpsitescopeMatch11.10
ORhpsitescopeMatch11.11
ORhpsitescopeMatch11.12
ORhpsitescopeMatch11.20
ORhpsitescopeMatch11.21
Related
prion
prion
Authentication flaw
2013-11-04 16:55:00
cvelist
cvelist
CVE-2013-4835
2013-11-04 15:00:00
dsquare
dsquare
HP SiteScope issueSiebelCmd 11.20 RCE
2014-01-13 00:00:00
checkpoint_advisories
checkpoint_advisories
HP SiteScope issueSiebelCmd SOAP Request Code Execution (CVE-2013-4835)
2013-12-22 00:00:00
securityvulns
securityvulns
HP SiteScope code execution
2013-11-05 00:00:00
[security bulletin] HPSBMU02933 rev.1 - HP SiteScope, issueSiebelCmd SOAP Request, Remote Code Execution
2013-11-05 00:00:00
HP SiteScope security vulnerabilities
2014-03-27 00:00:00
zdi
zdi
HP SiteScope issueSiebelCmd SOAP Request Remote Code Execution Vulnerability
2013-11-24 00:00:00
cve
cve
CVE-2013-4835
2013-11-04 16:55:04
packetstorm
packetstorm
HP SiteScope issueSiebelCmd Remote Code Execution
2013-12-23 00:00:00
seebug
seebug
HP SiteScope 'issueSiebelCmd' SOAPθ―·ζ±θΏη¨δ»£η ζ§θ‘ζΌζ΄
2013-12-25 00:00:00
nessus
nessus
HP SiteScope Multiple Unspecified Remote Code Execution Vulnerabilities
2013-08-02 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.7 High
AI Score
Confidence
Low
0.97 High
EPSS
Percentile
99.8%
Related for NVD:CVE-2013-4835