Outside In Technology Security Vulnerabilities and Issues — Outside In Technology CVE List

Lucene search

OracleOutside In Technology

21 matches found

CVE•added 2020/06/27 12:15 p.m.•507 views

CVE-2020-15358

In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.

5.5CVSS6.8AI score0.00073EPSS

CVE•added 2020/04/09 3:15 a.m.•427 views

CVE-2020-11655

SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled.

7.5CVSS7.9AI score0.02825EPSS

CVE•added 2020/05/24 10:15 p.m.•419 views

CVE-2020-13434

SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c.

5.5CVSS6.8AI score0.0005EPSS

CVE•added 2020/01/13 6:15 a.m.•366 views

CVE-2020-6851

OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k_update_image_dimensions validation.

7.5CVSS7.9AI score0.0122EPSS

CVE•added 2020/04/09 3:15 a.m.•353 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.

9.8CVSS9.1AI score0.09404EPSS

CVE•added 2020/02/21 10:15 p.m.•352 views

CVE-2020-9327

In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations.

7.5CVSS7.8AI score0.01401EPSS

CVE•added 2020/05/27 3:15 p.m.•317 views

CVE-2020-13631

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.

5.5CVSS6.7AI score0.00111EPSS

CVE•added 2020/05/27 3:15 p.m.•297 views

CVE-2020-13630

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

7CVSS7.5AI score0.00177EPSS

CVE•added 2020/06/29 9:15 p.m.•249 views

CVE-2020-15389

jp2/opj_decompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory operated on by the decompressor. Triggering a double-free may also be possible. This is related to calling opj_image_destroy twice.

6.5CVSS7.1AI score0.00223EPSS

CVE•added 2020/05/27 3:15 p.m.•241 views

CVE-2020-13632

ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.

5.5CVSS6.2AI score0.00064EPSS

CVE•added 2020/01/15 5:15 p.m.•53 views

CVE-2020-2536

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). The supported version that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In Techn...

5.8CVSS5.5AI score0.008EPSS

CVE•added 2020/01/15 5:15 p.m.•52 views

CVE-2020-2542

6.5CVSS6.5AI score0.0121EPSS

CVE•added 2020/01/15 5:15 p.m.•44 views

CVE-2020-2543

7.5CVSS7AI score0.00926EPSS

CVE•added 2020/01/15 5:15 p.m.•42 views

CVE-2020-2576

6.5CVSS6.5AI score0.0121EPSS

CVE•added 2020/04/15 2:15 p.m.•42 views

CVE-2020-2786

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). Supported versions that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In Technolo...

7.5CVSS6.9AI score0.01081EPSS

CVE•added 2020/04/15 2:15 p.m.•40 views

CVE-2020-2787

7.5CVSS6.9AI score0.01081EPSS

CVE•added 2020/01/15 5:15 p.m.•39 views

CVE-2020-2541

6.5CVSS6.5AI score0.0121EPSS

CVE•added 2020/01/15 5:15 p.m.•37 views

CVE-2020-2540

6.5CVSS6.5AI score0.0121EPSS

CVE•added 2020/04/15 2:15 p.m.•37 views

CVE-2020-2783