CVE-2013-2347
CVE-2013-2347
Vexday Risk Score
50Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 66.4%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado
Lifecycle
02 Jan 2014Metasploit module available
04 Jan 2014Published on NVD
16 Feb 2014Public PoC
Weaponization speed
43 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port 5555, aka ZDI-CAN-1885.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencewww.exploit-db.com/exploits/32164unverifiedexploitdbwww.exploit-db.com/exploits/31689unverifiedexploitdbwww.exploit-db.com/exploits/32164unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.