CVE-2020-2576

Name of the Vulnerable Software and Affected Versions Oracle Outside In Technology version 8.5.4

Description The issue is related to a vulnerability in the Oracle Outside In Technology product, specifically in the Outside In Filters component. This vulnerability can be easily exploited by an unauthenticated attacker with network access via HTTP, allowing them to compromise Oracle Outside In Technology. Successful attacks can result in unauthorized access to update, insert, or delete some of the accessible data in Oracle Outside In Technology, as well as cause a partial denial of service. The vulnerability is associated with resource release errors in the Outside In Filters component.

Recommendations For Oracle Outside In Technology version 8.5.4, consider applying security patches or updates to fix the resource release errors in the Outside In Filters component to prevent exploitation. As a temporary workaround, restrict access to the Outside In Technology code to minimize the risk of unauthorized data access or denial of service attacks.