CVE-2025-62480
📊 2.7 LOW⚡ 0.0%🎯 0 exploits
📅 Published Oct 21, 2025
📋 Status: Analyzed
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Naming Subsystem). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle ZFS Storage Appliance Kit. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L).
CVSS v3.1 • [email protected]
🎯 Affected Products & Systems
1 product configurations affected
Filter by type:
| Type | Vendor | Product | Version Range | Status | CPE String |
|---|---|---|---|---|---|
📱App | oracle | zfs storage appliance kit | 8.8 | Vulnerable | cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:* |
📱
VulnerableApplication
Version: 8.8
CPE:
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*
Metrics
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
HIGH
User Interaction:
NONE
Confidentiality:
NONE
Integrity:
NONE
Availability:
LOW
Scope:
UNCHANGED
🔍 Technical Details
Analysis Status
AnalyzedCVSS Details
2.7 (LOW)v3.1
Source: [email protected]
EPSS Details
0.0% (Minimal)11.6th percentile
Last updated: Oct 30, 2025
Exploitation probability within 30 days
Published Date
Oct 21, 2025 (10 days ago)
Last Modified
Oct 23, 2025 (8 days ago)
Security Weaknesses1
CWE-267
References2
NVDgeneral