漏洞标题
N/A
漏洞描述信息
Oracle Fusion Middleware中的Oracle外部进入技术产品(组件:外部进入过滤器)的漏洞。受影响的支持版本是8.5.5。易被利用的漏洞允许通过HTTP协议验证less的入侵者 compromise Oracle外部进入技术。成功攻击此漏洞可能导致未经授权的行为,使Oracle外部进入技术 hang 或频繁地崩溃(完全DOS)。注意:外部进入技术是一个软件开发套件(SDK)。该协议和CVSS基础得分取决于使用外部进入技术的软件。CVSS得分假定软件将网络接收的数据直接传递给外部进入技术,但如果网络没有收到数据,CVSS得分可能较低。CVSS 3.1基础得分7.5(可用性影响)。CVSS向量:(CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In Technology. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Outside In Technology. Note: Outside In Technology is a suite of software development kits (SDKs). The protocol and CVSS Base Score depend on the software that uses Outside In Technology. The CVSS score assumes that the software passes data received over a network directly to Outside In Technology, but if data is not received over a network the CVSS score may be lower. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
Oracle Fusion Middleware和Oracle Outside In Technology 输入验证错误漏洞
漏洞描述信息
Oracle Fusion Middleware(Oracle融合中间件)和Oracle Outside In Technology都是美国甲骨文(Oracle)公司的产品。Oracle Fusion Middleware是一套面向企业和云环境的业务创新平台。该平台提供了中间件、软件集合等功能。Oracle Outside In Technology是一套软件开发工具包 (SDK),可为开发人员提供全面的解决方案,以提取、规范化、清理、转换和查看 600 种非结构化文件格式的内容。 Oracle Outs
CVSS信息
N/A
漏洞类别
输入验证错误