Denial of Service Vulnerability in Oracle Fusion Middleware Outside In Technology
CVE-2021-35662

7.5HIGH

Key Information:

Vendor: Oracle
Status: Outside In Technology
Vendor: CVE Published:; 20 October 2021

Summary

A security flaw in Oracle Outside In Technology, part of the Oracle Fusion Middleware, permits unauthenticated attackers to exploit the system via HTTP. This could lead to a disruption in service, potentially causing the technology to hang or crash frequently. This vulnerability primarily affects version 8.5.5 of the Outside In Filters component, underscoring the importance of secure implementation practices to protect network-exposed applications.

Affected Version(s)

Outside In Technology 8.5.5

References

https://www.oracle.com/security-alerts/cpuoct2021.html

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 20, 2021
Vulnerability Reserved
Jun 28, 2021