CVE-2025-13809 | orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1 SSH Connection MachineInfoController.java host/sshPort/username/password/authType server-side request forgery

A vulnerability, which was classified as critical, was found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected by this issue is some unknown functionality of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/MachineInfoController.java of the component SSH Connection Handler. Such manipulation of the argument host/sshPort/username/password/authType leads to server-side request forgery.

This vulnerability is listed as CVE-2025-13809. The attack may be performed from remote. In addition, an exploit is available.

A patch should be applied to remediate this issue.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-13809 | orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1 SSH Connection MachineInfoController.java host/sshPort/username/password/authType server-side request forgery

Post correlati

CVE-2024-54091 | Siemens Parasolid PAR File out-of-bounds write (ssa-979056)

CVE-2024-43363 | Cacti up to 1.2.27 Log File code injection (GHSA-gxq4-mv8h-6qj4)

CVE-2024-45498 | Apache Airflow 2.10.0 DAG Trigger Permission command injection

CVE-2023-5757 | WP Crowdfunding Plugin up to 2.1.7 on WordPress Setting cross site scripting