CVE-2013-4836

Name of the Vulnerable Software and Affected Versions HP Application LifeCycle Management versions prior to 1.4.2

Description The issue allows remote attackers to execute arbitrary code via unknown vectors. This is related to an unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component.

Recommendations For versions prior to 1.4.2, update to version 1.4.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the GossipService SOAP Request implementation until a patch is applied.