cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2013-4810,https://securityvulnerability.io/vulnerability/CVE-2013-4810,,"HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplicate of CVE-2007-1036, CVE-2010-0738, and/or CVE-2012-0874.",HP,"Procurve Manager,Application Lifecycle Management,Identity Driven Manager",9.8,CRITICAL,0.7466800212860107,true,2022-03-25T00:00:00.000Z,false,false,true,2022-03-25T00:00:00.000Z,,false,false,,2013-09-16T13:01:00.000Z,0
CVE-2013-4811,https://securityvulnerability.io/vulnerability/CVE-2013-4811,,"UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert argument, which allows remote attackers to upload .jsp files and consequently execute arbitrary code via unspecified vectors, aka ZDI-CAN-1743.",HP,"Procurve Manager,Identity Driven Manager",,,0.9677299857139587,false,,false,false,false,,,false,false,,2013-09-16T13:01:00.000Z,0
CVE-2013-4812,https://securityvulnerability.io/vulnerability/CVE-2013-4812,,"UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName argument, which allows remote attackers to upload .jsp files and consequently execute arbitrary code via unspecified vectors, aka ZDI-CAN-1743.",HP,"Procurve Manager,Identity Driven Manager",,,0.9677299857139587,false,,false,false,false,,,false,false,,2013-09-16T13:01:00.000Z,0
CVE-2013-4809,https://securityvulnerability.io/vulnerability/CVE-2013-4809,,"Multiple SQL injection vulnerabilities in GetEventsServlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) sort or (2) dir parameter.",HP,"Procurve Manager,Identity Driven Manager",,,0.009359999559819698,false,,false,false,false,,,false,false,,2013-09-16T13:01:00.000Z,0
CVE-2013-4813,https://securityvulnerability.io/vulnerability/CVE-2013-4813,,"The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote attackers to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745.",HP,"Procurve Manager,Identity Driven Manager",,,0.0841199979186058,false,,false,false,false,,,false,false,,2013-09-16T13:01:00.000Z,0
CVE-2009-2681,https://securityvulnerability.io/vulnerability/CVE-2009-2681,,"Unspecified vulnerability in HP ProCurve Identity Driven Manager (IDM) A.02.x through A.02.03 and A.03.x through A.03.00, on Windows Server 2003 with IAS and Windows Server 2008 with NPS, allows local users to gain privileges via unknown vectors.",HP,Procurve Identity Driven Manager,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2009-09-29T18:00:00.000Z,0