Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-8696
PUBLISHED
More InfoOfficial Page
Assigner-isc
Assigner Org ID-404fd4d2-a609-4245-b543-2c944a302a22
View Known Exploited Vulnerability (KEV) details
Published At-10 Sep, 2025 | 17:59
Updated At-04 Nov, 2025 | 21:15
Rejected At-
▼CVE Numbering Authority (CNA)
DoS attack against the Stork UI from an unauthenticated user

If an unauthenticated user sends a large amount of data to the Stork UI, it may cause memory and disk use problems for the system running the Stork server. This issue affects Stork versions 1.0.0 through 2.3.0.

Affected Products
Vendor
Internet Systems Consortium, Inc.ISC
Product
Stork
Default Status
unaffected
Versions
Affected
  • From 1.0.0 through 2.3.0 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-789CWE-789 Memory Allocation with Excessive Size Value
CWECWE-779CWE-779 Logging of Excessive Data
Type: CWE
CWE ID: CWE-789
Description: CWE-789 Memory Allocation with Excessive Size Value
Type: CWE
CWE ID: CWE-779
Description: CWE-779 Logging of Excessive Data
Metrics
VersionBase scoreBase severityVector
3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
N/AResource exhaustion. A sufficiently large input will cause Stork to allocate more memory than is available, leading to the failure of the `stork-server` process and/or other processes. Repeated smaller inputs may not exhaust memory but may fill log storage or force premature log rotation.
CAPEC ID: N/A
Description: Resource exhaustion. A sufficiently large input will cause Stork to allocate more memory than is available, leading to the failure of the `stork-server` process and/or other processes. Repeated smaller inputs may not exhaust memory but may fill log storage or force premature log rotation.
Solutions

Upgrade to the patched release most closely related to your current version of Stork: 2.2.1 or 2.3.1.

Configurations
Workarounds

Placing the Stork server behind a firewall or proxy that only allows access from trusted clients, and/or enforces input size limits, is an effective workaround.

Exploits

This flaw was discovered in internal testing. We are not aware of any active exploits.

Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://kb.isc.org/docs/cve-2025-8696
vendor-advisory
Hyperlink: https://kb.isc.org/docs/cve-2025-8696
Resource:
vendor-advisory
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.openwall.com/lists/oss-security/2025/09/10/5
N/A
Hyperlink: http://www.openwall.com/lists/oss-security/2025/09/10/5
Resource: N/A
Details not found