Denial of Service Vulnerability in Oracle Outside In Technology
CVE-2021-2430

7.5HIGH

Key Information:

Vendor: Oracle
Status: Outside In Technology
Vendor: CVE Published:; 20 July 2021

Summary

A vulnerability exists in Oracle Outside In Technology, specifically in version 8.5.5, which could allow an unauthenticated attacker with HTTP network access to cause significant disruptions. Exploiting this issue could result in a complete denial of service, leading to system hangs or frequent crashes. This flaw primarily affects systems where data is passed from the network directly to the Outside In Technology, underscoring the importance of secure data handling practices in software development.

Affected Version(s)

Outside In Technology 8.5.5

References

https://www.oracle.com/security-alerts/cpujul2021.html

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 20, 2021
Vulnerability Reserved
Dec 9, 2020