漏洞标题
N/A
漏洞描述信息
Oracle Fusion Middleware的Oracle Outside In Technology产品(组件:外部进入过滤器)中的漏洞。受影响的支持版本是8.5.5。容易利用的漏洞允许通过HTTP协议验证的未经授权的黑客访问OracleOutside In Technology。成功攻击此漏洞可能导致未经授权的能力,使OracleOutside In Technology hang或重复性崩溃(完全DOS)。注意:Oracle Outside In Technology是一个软件开发套件(SDK)。协议和CVSS基础得分取决于使用Oracle Outside In Technology的软件。CVSS得分假定软件将通过网络接收的数据直接传递给OracleOutside In Technology,但如果网络没有接收数据,CVSS得分可能较低。CVSS 3.1基础得分7.5(可用性影响。CVSS向量:(CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In Technology. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Outside In Technology. Note: Outside In Technology is a suite of software development kits (SDKs). The protocol and CVSS Base Score depend on the software that uses Outside In Technology. The CVSS score assumes that the software passes data received over a network directly to Outside In Technology, but if data is not received over a network the CVSS score may be lower. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
Oracle Fusion Middleware 安全漏洞
漏洞描述信息
Oracle Fusion Middleware(Oracle融合中间件)是美国甲骨文(Oracle)公司的一套面向企业和云环境的业务创新平台。该平台提供了中间件、软件集合等功能。 Oracle Fusion Middleware存在安全漏洞,该漏洞允许未经身份验证的攻击者可利用该漏洞通过HTTP网络访问破坏Oracle外部技术。
CVSS信息
N/A
漏洞类别
其他