CVE-2013-4841

2014-02-2614:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

vulnerability

dbd_manager

lefthand os

hp storevirtual

storevirtual vsa software

arbitrary code execution

zdi-can-1509

cve-2013-4841

nvd

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.859 High

EPSS

Percentile

98.5%

JSON

Unspecified vulnerability in dbd_manager in LeftHand OS before 11.0 in HP StoreVirtual 4000 and StoreVirtual VSA Software (formerly LeftHand Virtual SAN Appliance) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1509.

CPENameOperatorVersion
hp:lefthandhp lefthandle10.5
hp:lefthandhp lefthandeq8.1
hp:lefthandhp lefthandeq8.5
hp:lefthandhp lefthandeq9.0
hp:lefthandhp lefthandeq9.5
hp:lefthandhp lefthandeq10
hp:storevirtual_virtual_storage_appliancehp storevirtual virtual storage applianceeq-
hp:storevirtual_4000hp storevirtual 4000eq-

CPE	Name	Operator	Version
hp:lefthand	hp lefthand	le	10.5
hp:lefthand	hp lefthand	eq	8.1
hp:lefthand	hp lefthand	eq	8.5
hp:lefthand	hp lefthand	eq	9.0
hp:lefthand	hp lefthand	eq	9.5
hp:lefthand	hp lefthand	eq	10
hp:storevirtual_virtual_storage_appliance	hp storevirtual virtual storage appliance	eq	-
hp:storevirtual_4000	hp storevirtual 4000	eq	-