CVE-2015-6014 — Oracle Fusion Middleware vulnerability

16 documents4 sources

Severity

10.0CRITICALNVD

NVD1.9CNA1.9

EPSS

19.9%

top 4.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Fusion Middleware Oracle Outside IN Technology

Timeline

PublishedJan 22

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-4808, CVE-2015-6013, CVE-2015-6015, and CVE-2016-0432. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this issue is a stack-based buffer overflow in Oracle Outside In 8.5.2 and …

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDoracle/outside_in_technology8.5.0, 8.5.1, 8.5.2+2

▶NVDoracle/fusion_middleware8.5.0, 8.5.1, 8.5.2+2

🔴Vulnerability Details

GHSA

GHSA-wp3r-3c7w-2mpf: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8↗2022-05-17

▶

GHSA

GHSA-84ww-p6wx-79jc: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8↗2022-05-17

▶

GHSA

GHSA-39w4-x968-7pjw: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8↗2022-05-17

▶

GHSA

GHSA-68fr-vgv6-pqw8: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8↗2022-05-17

▶

GHSA

GHSA-mpfh-5qpj-3mwp: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8↗2022-05-17

▶

🕵️Threat Intelligence

Talos

Vulnerability Spotlight: Oracle's Outside In Technology, Turned Inside-Out↗2016-07-20

▶