CVE-2013-2328

Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1636.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657	Vendor Advisory
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657	Vendor Advisory
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657	Vendor Advisory
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657	Vendor Advisory
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657	Vendor Advisory
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hp:storage_data_protector:6.20:-::::hp-ux::*
	cpe:2.3:a:hp:storage_data_protector:6.20:-::::redhat_enterprise_linux::*
	cpe:2.3:a:hp:storage_data_protector:6.20:-::::sunos::*
	cpe:2.3:a:hp:storage_data_protector:6.20:-::::suse_linux::*
	cpe:2.3:a:hp:storage_data_protector:6.20:-::::windows_server_2003::*
	cpe:2.3:a:hp:storage_data_protector:6.20:-::::windows_server_2008::*
	cpe:2.3:a:hp:storage_data_protector:6.21:-::::hp-ux::*
	cpe:2.3:a:hp:storage_data_protector:6.21:-::::redhat_enterprise_linux::*
	cpe:2.3:a:hp:storage_data_protector:6.21:-::::sunos::*
	cpe:2.3:a:hp:storage_data_protector:6.21:-::::suse_linux::*
	cpe:2.3:a:hp:storage_data_protector:6.21:-::::windows_server_2003::*
	cpe:2.3:a:hp:storage_data_protector:6.21:-::::windows_server_2008::*

Configuration 2 (hide)

OR	cpe:2.3:a:hp:storage_data_protector:7.00:-::::hp-ux::*
	cpe:2.3:a:hp:storage_data_protector:7.00:-::::redhat_enterprise_linux::*
	cpe:2.3:a:hp:storage_data_protector:7.00:-::::suse_linux::*
	cpe:2.3:a:hp:storage_data_protector:7.00:-::::windows_server_2003::*
	cpe:2.3:a:hp:storage_data_protector:7.00:-::::windows_server_2008::*
	cpe:2.3:a:hp:storage_data_protector:7.01:-::::hp-ux::*
	cpe:2.3:a:hp:storage_data_protector:7.01:-::::redhat_enterprise_linux::*
	cpe:2.3:a:hp:storage_data_protector:7.01:-::::suse_linux::*
	cpe:2.3:a:hp:storage_data_protector:7.01:-::::windows_server_2003::*
	cpe:2.3:a:hp:storage_data_protector:7.01:-::::windows_server_2008::*

History

21 Nov 2024, 01:51

Type	Values Removed	Values Added
References	~~() https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657 - Vendor Advisory~~	() https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657 - Vendor Advisory

Information

Published : 2013-06-06 13:02

Updated : 2025-04-11 00:51

NVD link : CVE-2013-2328

Mitre link : CVE-2013-2328

CVE.ORG link : CVE-2013-2328

JSON object : View

Products Affected

storage_data_protector

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-2328", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-06-06T13:02:15.217", "references": [{"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1636."}, {"lang": "es", "value": "Vulnerabilidad sin especificar en HP Storage Data Protector 6.20, 6.21, 7.00, y 7.01, permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de vectores no especificados. Aka ZDI-CAN-1636."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:hp-ux:*:*", "vulnerable": true, "matchCriteriaId": "8A6DDE92-7632-40CB-A5AB-9CB5A5A5B87F"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:redhat_enterprise_linux:*:*", "vulnerable": true, "matchCriteriaId": "9F376993-B94E-40AB-8CC9-E2146E75FA19"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:sunos:*:*", "vulnerable": true, "matchCriteriaId": "65E1BC1A-A12B-4A7C-9B22-716EDF6C7706"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:suse_linux:*:*", "vulnerable": true, "matchCriteriaId": "2D6D15D2-983D-4206-9132-A02BB5044392"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2003:*:*", "vulnerable": true, "matchCriteriaId": "8A5C9EAD-3A6A-4392-8D4E-11BD6CC0819E"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2008:*:*", "vulnerable": true, "matchCriteriaId": "D27B979B-DECC-4B62-A530-BC9F53D14496"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:hp-ux:*:*", "vulnerable": true, "matchCriteriaId": "1ACA6A37-A6F0-4F00-8C2B-26E6C797F12B"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:redhat_enterprise_linux:*:*", "vulnerable": true, "matchCriteriaId": "A1ED73C6-45FD-47E2-B570-60C5C97B91AF"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:sunos:*:*", "vulnerable": true, "matchCriteriaId": "9A1C621E-ABA5-4DE3-8A30-D36C4293892E"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:suse_linux:*:*", "vulnerable": true, "matchCriteriaId": "C3E8404F-B65B-4448-8F1F-580FA50BC9FF"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2003:*:*", "vulnerable": true, "matchCriteriaId": "75CD6409-E82D-4C4A-9CEB-9CA822A7DA05"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2008:*:*", "vulnerable": true, "matchCriteriaId": "656B62B9-4706-4ECC-87F0-AFCB789C8C77"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:storage_data_protector:7.00:-:*:*:*:hp-ux:*:*", "vulnerable": true, "matchCriteriaId": "885F1BCD-C3EC-4BC7-A25A-ED934656E624"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.00:-:*:*:*:redhat_enterprise_linux:*:*", "vulnerable": true, "matchCriteriaId": "573F4D56-1D2C-4161-A288-A854CE5774EC"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.00:-:*:*:*:suse_linux:*:*", "vulnerable": true, "matchCriteriaId": "0E945F6A-68EE-4D8F-A50F-7B0284AF1865"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.00:-:*:*:*:windows_server_2003:*:*", "vulnerable": true, "matchCriteriaId": "FB3895CF-D4A3-49E2-B094-6DE97E552853"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.00:-:*:*:*:windows_server_2008:*:*", "vulnerable": true, "matchCriteriaId": "4E1FBA80-0309-4ADA-B411-B121F1E08C31"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.01:-:*:*:*:hp-ux:*:*", "vulnerable": true, "matchCriteriaId": "399968DE-78B3-49AC-9087-ABD26BF9012C"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.01:-:*:*:*:redhat_enterprise_linux:*:*", "vulnerable": true, "matchCriteriaId": "74D90C30-C784-43DE-9131-81CD0872E366"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.01:-:*:*:*:suse_linux:*:*", "vulnerable": true, "matchCriteriaId": "661C4207-C72C-4E7D-A6E8-9B0DFCC406FF"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.01:-:*:*:*:windows_server_2003:*:*", "vulnerable": true, "matchCriteriaId": "FA4D5382-FEDC-460F-ABCE-06959BF0BC01"}, {"criteria": "cpe:2.3:a:hp:storage_data_protector:7.01:-:*:*:*:windows_server_2008:*:*", "vulnerable": true, "matchCriteriaId": "56D77CFE-3FF2-4DA8-B44A-8CFC20313262"}], "operator": "OR"}]}], "sourceIdentifier": "hp-security-alert@hp.com"}

10.0 /10