Vulnerability Details CVE-2025-0160
IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0 through 8.6.0.5, 8.6.1.0, 8.6.2.0 through 8.6.2.1, 8.6.3.0, 8.7.0.0 through 8.7.0.2, 8.7.1.0, 8.7.2.0 through 8.7.2.1) could allow a remote attacker with access to the system to execute arbitrary Java code due to improper restrictions in the RPCAdapter service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.4%
CVSS Severity
CVSS v3 Score 8.1
Products affected by CVE-2025-0160
-
cpe:2.3:a:ibm:storage_virtualize:8.5
-
cpe:2.3:a:ibm:storage_virtualize:8.5.0.0
-
cpe:2.3:a:ibm:storage_virtualize:8.5.1.0
-
cpe:2.3:a:ibm:storage_virtualize:8.5.2.0
-
cpe:2.3:a:ibm:storage_virtualize:8.5.2.3
-
cpe:2.3:a:ibm:storage_virtualize:8.5.3.0
-
cpe:2.3:a:ibm:storage_virtualize:8.5.3.1
-
cpe:2.3:a:ibm:storage_virtualize:8.5.4.0
-
cpe:2.3:a:ibm:storage_virtualize:8.6.0.0
-
cpe:2.3:a:ibm:storage_virtualize:8.6.1.0
-
cpe:2.3:a:ibm:storage_virtualize:8.6.2.0
-
cpe:2.3:a:ibm:storage_virtualize:8.6.2.1
-
cpe:2.3:a:ibm:storage_virtualize:8.6.3.0
-
cpe:2.3:a:ibm:storage_virtualize:8.7.0.0
-
cpe:2.3:a:ibm:storage_virtualize:8.7.1.0
-
cpe:2.3:a:ibm:storage_virtualize:8.7.2.0
-
cpe:2.3:a:ibm:storage_virtualize:8.7.2.1