CVE-2019-5392

MEDIUM

HPE Intelligent Management Center PLAT < 7.3 E0506P09 - Information Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-5392. PoCs published by Lazy Hacker.

AI-analyzed exploit summary This exploit leverages CVE-2019-5392 to perform an information disclosure attack on HPE Intelligent Management Center by sending a crafted payload to the dbman service on port 2810, allowing directory listing under the SYSTEM or root context.

Description

A disclosure of information vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.

Exploits (1)

exploitdb WORKING POC
by Lazy Hacker · pythonremotewatchos
https://www.exploit-db.com/exploits/47408

This exploit leverages CVE-2019-5392 to perform an information disclosure attack on HPE Intelligent Management Center by sending a crafted payload to the dbman service on port 2810, allowing directory listing under the SYSTEM or root context.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: HPE Intelligent Management Center (iMC_PLAT_7.1_E0302_Standard_Windows, iMC_PLAT_7.2_E0403_Std_Win)
No auth needed
Prerequisites: Network access to the target system · dbman service running on port 2810
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 5.3
EPSS 0.0710
EPSS Percentile 93.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

Status published
Products (2)
hp/intelligent_management_center 7.3 (8 CPE variants)
hp/intelligent_management_center < 7.3
Published Jun 05, 2019
Tracked Since Feb 18, 2026