CVE-2021-21514 PoC — Dell EMC OpenManage Server Administrator 路径遍历漏洞

Source

https://github.com/und3sc0n0c1d0/AFR-in-OMSA

Associated Vulnerability

Title:Dell EMC OpenManage Server Administrator 路径遍历漏洞 (CVE-2021-21514)
Description:DELL Dell EMC OpenManage Server Administrator（OMSA）是美国戴尔（DELL）公司的一套系统管理解决方案。该方案支持在线诊断、系统运行情况检测、设备管理等。 Dell EMC OpenManage Server Administrator versions 9.5 and prior 存在路径遍历漏洞，该漏洞源于具有管理员权限的远程用户可能会利用这个漏洞，通过发送一个特别设计的URL请求来查看目标系统上的任意文件。

Description

Validation of Arbitrary File Read Vulnerabilities in Dell OpenManage Server Administrator (OMSA) - CVE-2016-4004, CVE-2021-21514 and CVE-2020-5377.

Readme

# Arbitrary File Read in OMSA
Validation of Arbitrary File Read Vulnerabilities in Dell OpenManage Server Administrator (OMSA) - CVE-2016-4004, CVE-2021-21514 and CVE-2020-5377.

File Snapshot


 [4.0K]  /data/pocs/bd3b7c5af424ce8af76e6280ab11bb63fa871758
├── [3.4K]  ArbitraryFileRead.py
└── [ 178]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!