Remote Code Execution Vulnerability in HP ProCurve Manager and IDM
CVE-2013-4811
Currently unrated
Key Information:
- Vendor
HP
- Vendor
- CVE Published:
- 16 September 2013
What is CVE-2013-4811?
The HP ProCurve Manager and Identity Driven Manager contain a security vulnerability in the UpdateDomainControllerServlet that fails to properly validate the adCert argument. This oversight allows remote attackers to upload malicious .jsp files and potentially execute arbitrary code on the server, leading to unauthorized access and manipulation of system processes. Attackers can exploit this flaw through various unspecified vectors, posing a significant risk to the affected systems.