VYPR
Unrated severityNVD Advisory· Published Nov 4, 2013· Updated Jun 16, 2026

CVE-2013-4836

CVE-2013-4836

Description

Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component before 1.4.2 in HP Application LifeCycle Management (ALM) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.

Affected products

6
  • cpe:2.3:a:hp:alm_synchronizer:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:hp:alm_synchronizer:*:*:*:*:*:*:*:*range: <=1.41
    • cpe:2.3:a:hp:alm_synchronizer:1.10:*:*:*:*:*:*:*
    • cpe:2.3:a:hp:alm_synchronizer:1.20:*:*:*:*:*:*:*
    • cpe:2.3:a:hp:alm_synchronizer:1.30:*:*:*:*:*:*:*
    • cpe:2.3:a:hp:alm_synchronizer:1.40:*:*:*:*:*:*:*
  • Range: <1.4.2 (Synchronizer component)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.