CVE Vulnerabilities

CVE-2013-4836

Published: Nov 04, 2013 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component before 1.4.2 in HP Application LifeCycle Management (ALM) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.

Affected Software

Name Vendor Start Version End Version
Alm_synchronizer Hp * 1.41 (including)
Alm_synchronizer Hp 1.10 (including) 1.10 (including)
Alm_synchronizer Hp 1.20 (including) 1.20 (including)
Alm_synchronizer Hp 1.30 (including) 1.30 (including)
Alm_synchronizer Hp 1.40 (including) 1.40 (including)

References