Home

Description

Anheng Mingyu Operation and Maintenance Audit and Risk Control System up to 2023-08-10 contains a server-side request forgery (SSRF) vulnerability in the xmlrpc.sock handler. The product accepts specially crafted XML-RPC requests that can be used to instruct the server to connect to internal unix socket RPC endpoints and perform privileged XML-RPC methods. An attacker able to send such requests can invoke administrative RPC methods via the unix socket interface to create arbitrary user accounts on the system, resulting in account creation and potential takeover of the bastion host. VulnCheck has observed this vulnerability being exploited in the wild as of 2025-10-30 at 00:30:17.837319 UTC.

PUBLISHED Reserved 2025-10-30 | Published 2025-10-30 | Updated 2025-10-31 | Assigner VulnCheck




CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-306 Missing Authentication for Critical Function

CWE-918 Server-Side Request Forgery (SSRF)

Product status

Default status
unknown

Any version before 2023-08-10
affected

Credits

Anonymous User via CN-SEC finder

References

cn-sec.com/archives/1947658.html exploit

github.com/...系统 xmlrpc.sock 任意用户添加漏洞.md exploit

www.vulncheck.com/...nd-risk-control-system-xmirpc-sock-ssrf third-party-advisory

cve.org (CVE-2023-7325)

nvd.nist.gov (CVE-2023-7325)

Download JSON