Web
Nmap discovered a Web server on the port 1311 of the HACKSMARTERSEC(10.10.183.209) host.
The running service is unknown at this time
┌──(kali㉿kali)-[~/archive/thm/hacksmartersecurity]
└─$ curl -k -I -X OPTIONS https://$IP:1311/
HTTP/1.1 200
Strict-Transport-Security: max-age=0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
vary: accept-encoding
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Sat, 05 Jul 2025 14:18:59 GMT
┌──(kali㉿kali)-[~/archive/thm/hacksmartersecurity]
└─$ curl -k -I https://$IP:1311/
HTTP/1.1 200
Strict-Transport-Security: max-age=0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
vary: accept-encoding
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Sat, 05 Jul 2025 14:19:02 GMT
Redirected to a login page for an OpenManage instance.
DellEMC OpenManage is a suite of systems management tools designed to simplify the deployment, monitoring, and maintenance of Dell servers and infrastructure. It enables IT administrators to automate routine tasks, monitor system health, and manage hardware remotely. The platform includes tools like OpenManage Enterprise, iDRAC, and SupportAssist to provide centralized, proactive management. Overall, it improves operational efficiency and reduces downtime in data center environments.
Version Information
Clicking into the About button leads to the /UOMSAAbout endpoint where it reveals version information; 9.4.0.2
Vulnerabilities
Looking it up online reveals an research article about multiple vulnerabilities, CVE-2020-5377, present in OpenManage 9.4.0.2