Outside In Technology Security Vulnerabilities and Issues — Outside In Technology CVE List

Lucene search

OracleOutside In Technology

36 matches found

CVE•added 2021/09/19 6:15 p.m.•587 views

CVE-2021-40690

All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacker to abuse an XPath Transform to extract any loca...

7.5CVSS7.4AI score0.00335EPSS

CVE•added 2021/01/05 6:15 p.m.•270 views

CVE-2020-27844

A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions prior to 2.4.0. This flaw allows an attacker to provide crafted input to openjpeg during conversion and encoding, causing an out-of-bounds write. The highest threat from this vulnerability is to confidentiality, integrity, as well as s...

8.3CVSS7.7AI score0.012EPSS

CVE•added 2021/06/12 10:15 a.m.•172 views

CVE-2021-31811

In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.

5.5CVSS5.6AI score0.00329EPSS

CVE•added 2021/01/05 6:15 p.m.•168 views

CVE-2020-27842

There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability.

5.5CVSS6.1AI score0.00066EPSS

CVE•added 2021/01/05 6:15 p.m.•168 views

CVE-2020-27843

A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encoding functionality, causing an out-of-bounds read. The highest threat from this vulnerability is system availability.

7.1CVSS6AI score0.00077EPSS

CVE•added 2021/03/19 4:15 p.m.•158 views

CVE-2021-27906

A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.

5.5CVSS5.6AI score0.00331EPSS

CVE•added 2021/01/05 6:15 p.m.•155 views

CVE-2020-27845

There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to provide untrusted input to openjpeg's conversion/encoding functionality, they could cause an out-of-bounds read. The highest impact of this flaw is to application availability.

5.5CVSS6.2AI score0.00065EPSS

CVE•added 2021/03/19 4:15 p.m.•153 views

CVE-2021-27807

A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.

5.5CVSS5.6AI score0.00331EPSS

CVE•added 2021/03/23 5:15 p.m.•150 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS5.9AI score0.00214EPSS

CVE•added 2021/01/05 6:15 p.m.•142 views

CVE-2020-27841

There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bounds read. The greatest impact from this flaw is to application availability.

5.5CVSS6AI score0.00072EPSS

CVE•added 2021/07/21 12:15 a.m.•74 views

CVE-2021-2453

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In Techn...

7.5CVSS7.5AI score0.01422EPSS

CVE•added 2021/07/21 12:15 a.m.•67 views

CVE-2021-2452

7.5CVSS7.2AI score0.01422EPSS

CVE•added 2021/07/21 12:15 a.m.•63 views

CVE-2021-2449

7.5CVSS7.2AI score0.01034EPSS

CVE•added 2021/07/21 12:15 a.m.•63 views

CVE-2021-2450

7.5CVSS7.2AI score0.01034EPSS

CVE•added 2021/04/22 10:15 p.m.•60 views

CVE-2021-2240

7.5CVSS7.2AI score0.00753EPSS

CVE•added 2021/07/21 12:15 a.m.•59 views

CVE-2021-2451

7.5CVSS7.5AI score0.01034EPSS

CVE•added 2021/07/21 3:16 p.m.•55 views

CVE-2021-2430

7.5CVSS7.2AI score0.01399EPSS

CVE•added 2021/07/21 3:15 p.m.•52 views

CVE-2021-2419

7.5CVSS7.2AI score0.01034EPSS

CVE•added 2021/07/21 3:15 p.m.•51 views

CVE-2021-2420

7.5CVSS7.2AI score0.01034EPSS

CVE•added 2021/10/20 11:17 a.m.•50 views

CVE-2021-35656

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/04/22 10:15 p.m.•49 views

CVE-2021-2242

8.2CVSS7.8AI score0.00788EPSS

CVE•added 2021/10/20 11:16 a.m.•49 views

CVE-2021-35573

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/10/20 11:16 a.m.•47 views

CVE-2021-35574

7.5CVSS7.1AI score0.01571EPSS

CVE•added 2021/10/20 11:17 a.m.•47 views

CVE-2021-35657

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/10/20 11:17 a.m.•46 views

CVE-2021-35658

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/10/20 11:16 a.m.•42 views

CVE-2021-35572

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/10/20 11:17 a.m.•42 views

CVE-2021-35659

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/01/20 3:15 p.m.•41 views

CVE-2021-2068

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). Supported versions that are affected are 8.5.4 and 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside...

8.6CVSS8AI score0.01075EPSS

CVE•added 2021/10/20 11:17 a.m.•41 views

CVE-2021-35661

7.5CVSS7.2AI score0.018EPSS

CVE•added 2021/07/21 3:16 p.m.•40 views

CVE-2021-2431

7.5CVSS7.2AI score0.01399EPSS

CVE•added 2021/01/20 3:15 p.m.•39 views

CVE-2021-2066

8.6CVSS8AI score0.01075EPSS

CVE•added 2021/10/20 11:17 a.m.•39 views

CVE-2021-35662