Remote Code Execution Vulnerability in HP Storage Data Protector
CVE-2013-6194

Currently unrated

Key Information:

Vendor: HP
Status: Storage Data Protector
Vendor: CVE Published:; 4 January 2014

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 77%

What is CVE-2013-6194?

An unspecified vulnerability in HP Storage Data Protector 6.2X enables remote attackers to execute arbitrary code or trigger a denial of service. Utilizing unknown vectors, this flaw poses significant risks, prompting users to implement necessary security measures and stay updated with the latest patches and advisories from HP.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2013-6194 - Proof of Concept

References

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/...

vendor-advisoryx_refsource_HP

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/...

vendor-advisoryx_refsource_HP

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/...

vendor-advisoryx_refsource_HP

EPSS Score

77% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 4, 2014
👾
Exploit known to exist
Jan 4, 2014
Vulnerability published
Jan 4, 2014
Vulnerability Reserved
Oct 21, 2013

CVE-2013-6194 Data

JSON