CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-4836

Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component before 1.4.2 in HP Application LifeCycle Management (ALM) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.061

EPSS Ranking 90.5%

CVSS Severity

CVSS v2 Score 7.5

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969436
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969436
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969436
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969436

Products affected by CVE-2013-4836

Hp » Alm Synchronizer » Version: 1.10

cpe:2.3:a:hp:alm_synchronizer:1.10
Hp » Alm Synchronizer » Version: 1.20

cpe:2.3:a:hp:alm_synchronizer:1.20
Hp » Alm Synchronizer » Version: 1.30

cpe:2.3:a:hp:alm_synchronizer:1.30
Hp » Alm Synchronizer » Version: 1.40

cpe:2.3:a:hp:alm_synchronizer:1.40
Hp » Alm Synchronizer » Version: 1.41

cpe:2.3:a:hp:alm_synchronizer:1.41
Hp » Application Lifecycle Management » Version: N/A

cpe:2.3:a:hp:application_lifecycle_management:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4836

Products

Pricing

Contact Us