What is CVE-2009-4188?

CVE-2009-4188 is a vulnerability in N/a. Published 2009-12-03.

Is CVE-2009-4188 known to be exploited?

6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-4188

HP Operations Dashboard has a default password of j2deployer for the j2deployer account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against t…

EPSS: 0.878 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework
rapid7/metasploit-framework
rapid7/metasploit-framework
Joshua-Security-Project/Cybersecurity-practice-projects
danyk20/pentest
m3n0sd0n4ld/uCVE

References

36258 (vdb-entry, x_refsource_BID)
www.intevydis.com/blog/ (x_refsource_MISC)

Frequently asked questions

What is CVE-2009-4188?: CVE-2009-4188 is a vulnerability in N/a. Published 2009-12-03.
Is CVE-2009-4188 known to be exploited?: 6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.