CVE-2025-13809
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-01

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability has been found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected by this issue is some unknown functionality of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/MachineInfoController.java of the component SSH Connection Handler. Such manipulation of the argument host/sshPort/username/password/authType leads to server-side request forgery. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. A patch should be applied to remediate this issue. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-01
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2025-12-01
EPSS Evaluated
2026-06-15
NVD
CVE-2025-13809
EUVD
EUVD-2025-199957
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
orionsec orion-ops to 2025-08-01 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-918 The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the SSH Connection Handler component of orionsec orion-ops, specifically in the MachineInfoController.java file. It involves manipulation of input parameters such as host, sshPort, username, password, and authType, which leads to a server-side request forgery (SSRF). This means an attacker can make the server send unauthorized requests to other internal or external systems, potentially bypassing security controls. The vulnerability can be exploited remotely and a public exploit is available.

Impact Analysis

The vulnerability can allow an attacker to perform server-side request forgery, which may enable them to access internal systems or services that are not directly exposed to the internet. This can lead to unauthorized information disclosure, potential further attacks within the internal network, and compromise of sensitive data or systems.

Mitigation Strategies

Apply the available patch to remediate the issue as soon as possible. Since the vulnerability involves server-side request forgery via manipulation of SSH connection parameters, avoid exposing the affected component to untrusted networks until patched.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-13809. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart