CVE-2013-4824

HP iMC - Auth Bypass

Title source: llm

Description

Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Service Operation Management Software Module allows remote attackers to bypass authentication via unknown vectors, aka ZDI-CAN-1644.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/hp/hp_imc_som_create_account.rb

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03943547

Scores

EPSS 0.7770

EPSS Percentile 99.0%

Classification

CWE

CWE-287

Status draft

Affected Products (2)

hp/imc_service_operation_management_software_module

hp/intelligent_management_center

Timeline

Published Oct 13, 2013

Tracked Since Feb 18, 2026