2 matches found
HPE Intelligent Management Center Remote Code Execution (CVE-2019-5370)
An expression language injection vulnerability exists in HPE Intelligent Management Center. This vulnerability is due to insufficient handling of the beanName request parameter by the IctTableExportToCSVBean class...
CVE-2019-5370
CVE-2019-5370 corresponds to a remote code execution vulnerability in HP Enterprise’s Intelligent Management Center (IMC) PLAT prior to version 7.3 E0506P09. Connected advisories identify the root cause as insecure handling of the beanName parameter in the ictExpertCSVDownload.xhtml endpoint, ena...