Published: 05/06/2019 Updated: 24/08/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

A disclosure of information vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hp intelligent management center 7.3
hp intelligent management center

#!/opt/local/bin/python27 # Exploit Title: HPE Intelligent Management Center dbman Command 10001 Information Disclosure # Date: 22-09-2019 # Exploit Author: Rishabh Sharma (Linkedin: rishabh2241991) # Vendor Homepage: wwwhpecom # Software Link: h10145www1hpecom/Downloads/DownloadSoftwareaspx?SoftwareReleaseUId=16759&ProductNumbe ...

HPE Intelligent Management Center versions prior to 73 E0506P09 suffer from an information disclosure vulnerability ...

HPE Intelligent Management Center dbman Command 10001 Information Disclosure Software Link: h10145www1hpecom/Downloads/DownloadSoftwareaspx?SoftwareReleaseUId=16759&ProductNumber=JG747AAE&lang=en&cc=us&prodSeriesId=4176535&SaidNumber= Tested on Version: iMC_PLAT_71_E0302_Standard_Windows and iMC_PLAT_72_E0403_Std_Win Tested

NVD-CWE-noinfo https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03930en_us http://packetstormsecurity.com/files/154580/HPE-Intelligent-Management-Center-Information-Disclosure.html https://nvd.nist.gov https://github.com/crazywifi/HPE-Intelligent-Management-Center-dbman-Command-10001-Information-Disclosure https://www.exploit-db.com/exploits/47408

CVE-2019-5392

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect