CVE-2013-4835

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-4835. PoCs published by Metasploit, including Metasploit module exploits/multi/http/hp_sitescope_issuesiebelcmd.

AI-analyzed exploit summary This Metasploit module exploits an unauthenticated remote code execution vulnerability in HP SiteScope's APISiteScopeImpl web service via the issueSiebelCmd method. It supports both Windows and Linux targets, delivering payloads through SOAP requests.

Description

The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremoteunix

https://www.exploit-db.com/exploits/30473

View Code ZIP pw:eip

This Metasploit module exploits an unauthenticated remote code execution vulnerability in HP SiteScope's APISiteScopeImpl web service via the issueSiebelCmd method. It supports both Windows and Linux targets, delivering payloads through SOAP requests.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP SiteScope 11.20

No auth needed

Prerequisites: Network access to the target's SOAP endpoint (port 8080 by default) · Vulnerable HP SiteScope version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC GREAT

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/hp_sitescope_issuesiebelcmd.rb

View Code ZIP pw:eip

This Metasploit module exploits an unauthenticated remote code execution vulnerability in HP SiteScope's APISiteScopeImpl web service via the issueSiebelCmd method. It supports both Windows and Linux targets, using a SOAP-based command injection technique.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP SiteScope 11.20

No auth needed

Prerequisites: Network access to the target's SOAP endpoint (port 8080 by default) · Vulnerable HP SiteScope version (11.20)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/30473

Vendor Advisory vendor-advisory x_refsource_hp

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969435

Vendor Advisory x_refsource_confirm

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c03969435

HP SiteScope 10.1x and 11.x < 11.22 - Unauthenticated Remote Code Execution via APISiteScopeImpl issueSiebelCmd Method

Exploitation Summary

Description

Exploits (2)

References (3)

Scores

Details