Oracle ZFS Storage Appliance Kit Block Storage Component Takeover Vulnerability

Vulnerability

A vulnerability exists in the Oracle ZFS Storage Appliance Kit, specifically in the Block Storage component, version 8.8. This easily exploitable vulnerability allows a high-privileged attacker with network access via HTTP to compromise the Oracle ZFS Storage Appliance Kit. Successful exploitation can lead to a complete takeover of the appliance.

Impact

Exploitation of this vulnerability can result in a full takeover of the Oracle ZFS Storage Appliance Kit.

Added: Oct 21, 2025, 9:00 PM

Updated: Oct 21, 2025, 9:00 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

4.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

4.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle ZFS Storage Appliance Kit Block Storage Component Takeover Vulnerability

Vulnerability

Impact

Affected Products

Oracle ZFS Storage Appliance Kit

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating