CVE-2013-4841

2014-02-2614:55:08

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.859

Percentile

98.6%

JSON

Unspecified vulnerability in dbd_manager in LeftHand OS before 11.0 in HP StoreVirtual 4000 and StoreVirtual VSA Software (formerly LeftHand Virtual SAN Appliance) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1509.

Affected configurations

Nvd

Node

hplefthandRange≤10.5

hplefthandMatch8.1

hplefthandMatch8.5

hplefthandMatch9.0

hplefthandMatch9.5

hplefthandMatch10

AND

hpstorevirtual_virtual_storage_applianceMatch-

hpstorevirtual_4000Match-

VendorProductVersionCPE
hplefthand*cpe:2.3:o:hp:lefthand:*:*:*:*:*:*:*:*
hplefthand8.1cpe:2.3:o:hp:lefthand:8.1:*:*:*:*:*:*:*
hplefthand8.5cpe:2.3:o:hp:lefthand:8.5:*:*:*:*:*:*:*
hplefthand9.0cpe:2.3:o:hp:lefthand:9.0:*:*:*:*:*:*:*
hplefthand9.5cpe:2.3:o:hp:lefthand:9.5:*:*:*:*:*:*:*
hplefthand10cpe:2.3:o:hp:lefthand:10:*:*:*:*:*:*:*
hpstorevirtual_virtual_storage_appliance-cpe:2.3:a:hp:storevirtual_virtual_storage_appliance:-:*:*:*:*:*:*:*
hpstorevirtual_4000-cpe:2.3:h:hp:storevirtual_4000:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	lefthand	*	cpe:2.3:o:hp:lefthand::::::::
hp	lefthand	8.1	cpe:2.3:o:hp:lefthand:8.1:::::::*
hp	lefthand	8.5	cpe:2.3:o:hp:lefthand:8.5:::::::*
hp	lefthand	9.0	cpe:2.3:o:hp:lefthand:9.0:::::::*
hp	lefthand	9.5	cpe:2.3:o:hp:lefthand:9.5:::::::*
hp	lefthand	10	cpe:2.3:o:hp:lefthand:10:::::::*
hp	storevirtual_virtual_storage_appliance	-	cpe:2.3:a:hp:storevirtual_virtual_storage_appliance:-:::::::*
hp	storevirtual_4000	-	cpe:2.3:h:hp:storevirtual_4000:-:::::::*