Vulnerabilites found on iDRAC port - but don't make sense?


if you’re getting this vulnerability messages this means you’re using either any of the pre-defined Ultimate scan configs or using an own scan configuration with safe_checks set to no.

Such scan configurations are running active Denial of Service attacks against the target host with the goal to stop exposed services. Especially such embedded devices like iDRAC ones might be affected even if the actual vulnerability description is naming different products / protocols.

Basically it is also always possible that the usage of such scan configurations are showing possible false positives if some Firewall or IDS/IPS devices in between the scanner and the target host are interfering with the probes send out to test for the vulnerabilities: False positive or not false positive

1 Like