CVE-2013-3576

ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.

Published: Jun 14, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-3576
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
hp / system_management_homepage	-	-

http://marc.info/?l=bugtraq&m=137952496405683&w=2
http://www.kb.cert.org/vuls/id/735364

Vulnerability Database

289,599

CVE-2013-3576