CVE-2020-2555

CRITICAL KEV

Oracle Coherence 3.7.1.0/12.1.3.0.0/12.2.1.3-4 - RCE

Title source: llm

Description

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle Coherence. Successful attacks of this vulnerability can result in takeover of Oracle Coherence. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Exploits (10)

nomisec WORKING POC 176 stars

by Y4er · remote

https://github.com/Y4er/CVE-2020-2555

View Code ZIP pw:eip

nomisec WORKING POC 47 stars

by wsfengfan · remote

https://github.com/wsfengfan/CVE-2020-2555

View Code ZIP pw:eip

nomisec WORKING POC 14 stars

by Maskhe · poc

https://github.com/Maskhe/cve-2020-2555

View Code ZIP pw:eip

nomisec STUB 3 stars

by Hu3sky · poc

https://github.com/Hu3sky/CVE-2020-2555

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by Qynklee · remote

https://github.com/Qynklee/POC_CVE-2020-2555

View Code ZIP pw:eip

vulncheck_xdb WORKING POC

remote

https://github.com/Y4er/WebLogic-Shiro-shell

View Code ZIP pw:eip

exploitdb WORKING POC

by nu11secur1ty · pythonwebappsjava

https://www.exploit-db.com/exploits/48320

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Jang, Y4er, Shelby Pace, Steve Embling · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/weblogic_deserialize_badattrval.rb

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/48508

View Code ZIP pw:eip

vulncheck_xdb SCANNER

remote

https://github.com/0xn0ne/weblogicScanner

View Code ZIP pw:eip

References (9)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/157054/Oracle-Coherence-Fusion-Middleware-Remote-Code-Execution.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/157207/Oracle-WebLogic-Server-12.2.1.4.0-Remote-Code-Execution.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/157795/WebLogic-Server-Deserialization-Remote-Code-Execution.html

[Vendor Advisory] https://www.oracle.com/security-alerts/cpujan2020.html

[Vendor Advisory] https://www.oracle.com/security-alerts/cpujan2021.html

[Vendor Advisory] https://www.oracle.com/security-alerts/cpujul2020.html

[Patch, Vendor Advisory] https://www.oracle.com/security-alerts/cpujul2021.html

[Patch, Vendor Advisory] https://www.oracle.com/security-alerts/cpuoct2020.html

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-2555

Scores

CVSS v3 9.8

EPSS 0.9314

EPSS Percentile 99.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitation Intel

CISA KEV 2021-11-03

VulnCheck KEV 2020-10-20

InTheWild.io 2021-07-23

ENISA EUVD EUVD-2020-22348

Classification

CWE

CWE-502

Status published

Affected Products (22)

oracle/access_manager

oracle/coherence

oracle/coherence

oracle/coherence

oracle/coherence

oracle/commerce_platform < 11.3.2

oracle/commerce_platform

oracle/commerce_platform

oracle/commerce_platform

oracle/communications_diameter_signaling_router < 8.2.2

oracle/healthcare_data_repository

oracle/rapid_planning

oracle/rapid_planning

oracle/retail_assortment_planning

oracle/retail_assortment_planning

... and 7 more

Timeline

Published Jan 15, 2020

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026