CVE-2019-2835

Name of the Vulnerable Software and Affected Versions Oracle Outside In Technology version 8.5.4

Description The issue affects the Oracle Outside In Technology component of Oracle Fusion Middleware, specifically the Outside In Filters subcomponent. It allows an unauthenticated attacker with network access via HTTP to compromise Oracle Outside In Technology. Successful attacks can result in unauthorized update, insert, or delete access to some of Oracle Outside In Technology's accessible data, as well as unauthorized read access to a subset of Oracle Outside In Technology's accessible data. Additionally, it can cause a partial denial of service (partial DOS) of Oracle Outside In Technology.

Recommendations For Oracle Outside In Technology version 8.5.4, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting network access to the affected component to minimize the risk of exploitation.