Unrated severityNVD Advisory· Published Nov 4, 2013· Updated Jun 16, 2026
CVE-2013-4836
CVE-2013-4836
Description
Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component before 1.4.2 in HP Application LifeCycle Management (ALM) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.
Affected products
6cpe:2.3:a:hp:alm_synchronizer:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:hp:alm_synchronizer:*:*:*:*:*:*:*:*range: <=1.41
- cpe:2.3:a:hp:alm_synchronizer:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:hp:alm_synchronizer:1.20:*:*:*:*:*:*:*
- cpe:2.3:a:hp:alm_synchronizer:1.30:*:*:*:*:*:*:*
- cpe:2.3:a:hp:alm_synchronizer:1.40:*:*:*:*:*:*:*
- Range: <1.4.2 (Synchronizer component)
Patches
Vulnerability mechanics
References
1- h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplaynvdVendor Advisory
News mentions
0No linked articles in our index yet.