Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-62290

Опубликовано: 21 окт. 2025
Источник: nvd
CVSS3: 7.2
EPSS Низкий

Описание

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block Storage). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit. Successful attacks of this vulnerability can result in takeover of Oracle ZFS Storage Appliance Kit. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*

EPSS

Процентиль: 31%
0.00113
Низкий

7.2 High

CVSS3

Дефекты

CWE-284

Связанные уязвимости

github логотип

GHSA-5rm5-9wgj-4j7p

CVSS3: 7.2
github
4 месяца назад

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block Storage). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit. Successful attacks of this vulnerability can result in takeover of Oracle ZFS Storage Appliance Kit. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

fstec логотип

BDU:2025-16365

CVSS3: 7.2
fstec
4 месяца назад

Уязвимость компонента Block Storage системы хранения данных Sun ZFS Storage Appliance Kit (AK), позволяющая нарушителю получить доступ на изменение, добавление или удаление данных

EPSS

Процентиль: 31%
0.00113
Низкий

7.2 High

CVSS3

Дефекты

CWE-284