CVE-2013-4810

critical-risk
Published 2013-09-16

HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplicate of CVE-2007-1036, CVE-2010-0738, and/or CVE-2012-0874.

Do I need to act?

!
89.6% chance of exploitation in next 30 days
EPSS score — higher than 10% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
!
1 public exploit available
28713
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (5)

Affected Vendors

Hp

References (15)

Broken Link http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?d...
Mailing List http://marc.info/?l=bugtraq&m=138696448823753&w=2
Mailing List http://marc.info/?l=bugtraq&m=143039425503668&w=2
Broken Link http://secunia.com/advisories/54788
Broken Link http://www.securitytracker.com/id/1029010
Third Party Advisory http://zerodayinitiative.com/advisories/ZDI-13-229/
Exploit https://www.exploit-db.com/exploits/28713/
Broken Link http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?d...
Mailing List http://marc.info/?l=bugtraq&m=138696448823753&w=2
Mailing List http://marc.info/?l=bugtraq&m=143039425503668&w=2
Broken Link http://secunia.com/advisories/54788
Broken Link http://www.securitytracker.com/id/1029010
Third Party Advisory http://zerodayinitiative.com/advisories/ZDI-13-229/
Exploit https://www.exploit-db.com/exploits/28713/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-...
78
/ 100
critical-risk
Severity 32/34 · Critical
Exploitability 34/34 · Critical
Exposure 12/34 · Low