CVE-2013-6221

HP Service Virtualization 3.x < 3.50.1 - Path Traversal and Arbitrary File Write via CommunicationServlet

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-6221. PoCs published by Metasploit, including Metasploit module exploits/windows/http/hp_autopass_license_traversal.

AI-analyzed exploit summary This Metasploit module exploits CVE-2013-6221 in HP AutoPass License Server by leveraging unauthenticated file upload and directory traversal to deploy a malicious WAR file via a JSP dropper, achieving remote code execution.

Description

Directory traversal vulnerability in CommunicationServlet in HP Service Virtualization 3.x before 3.50.1, when the AutoPass license server is enabled, allows remote attackers to create arbitrary files and consequently execute arbitrary code via unspecified vectors, aka ZDI-CAN-2031.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotejava
https://www.exploit-db.com/exploits/33891

This Metasploit module exploits CVE-2013-6221 in HP AutoPass License Server by leveraging unauthenticated file upload and directory traversal to deploy a malicious WAR file via a JSP dropper, achieving remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP AutoPass License Server 8.01 / HP Service Virtualization 3.50
No auth needed
Prerequisites: Network access to the target server · HP AutoPass License Server with vulnerable CommunicationServlet component
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_autopass_license_traversal.rb

This Metasploit module exploits a directory traversal and unauthenticated file upload vulnerability in HP AutoPass License Server to achieve remote code execution via a JSP dropper and WAR deployment.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP AutoPass License Server 8.01 (as installed with HP Service Virtualization 3.50)
No auth needed
Prerequisites: Network access to the target server · HP AutoPass License Server with vulnerable CommunicationServlet component
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-195/
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/107943
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030385
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/33891

Scores

EPSS 0.7793
EPSS Percentile 99.5%

Details

CWE
CWE-22
Status published
Products (1)
hp/service_virtualization 3.0
Published Jun 18, 2014
Tracked Since Feb 18, 2026