CVE-2020-2555
Oracle Multiple Products Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
9Exploited in Wild
YesDecision
Descriptions
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle Coherence. Successful attacks of this vulnerability can result in takeover of Oracle Coherence. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
Vulnerabilidad en el producto Oracle Coherence de Oracle Fusion Middleware (componente: Caching, CacheStore, Invocation). Las versiones compatibles que se ven afectadas son 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 y 12.2.1.4.0. La vulnerabilidad fácilmente explotable permite que un atacante no autenticado con acceso a la red a través de T3 comprometa Oracle Coherence. Los ataques exitosos de esta vulnerabilidad pueden resultar en la adquisición de Oracle Coherence. Puntaje base CVSS 3.0 9.8 (Confidencialidad, integridad y impactos de disponibilidad). Vector CVSS: (CVSS: 3.0 / AV: N / AC: L / PR: N / UI: N / S: U / C: H / I: H / A: H).
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Oracle WebLogic. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the handling of the T3 protocol on TCP port 7001. When deserializing objects embedded with T3 protocol messages, the server allows deserialization of classes that may lead to arbitrary code execution. An attacker can leverage this vulnerability to execute code in the context of the current process.
Oracle WebLogic Server version 12.2.1.4.0 suffers from a remote code execution vulnerability.
Multiple Oracle products contain a remote code execution vulnerability that allows an unauthenticated attacker with network access via T3 or HTTP to takeover the affected system. Impacted Oracle products: Oracle Coherence in Fusion Middleware, Oracle Utilities Framework, Oracle Retail Assortment Planning, Oracle Commerce, Oracle Communications Diameter Signaling Router (DSR).
CVSS Scores
SSVC
- Decision:Act
Timeline
- 2019-12-10 CVE Reserved
- 2020-01-15 CVE Published
- 2020-03-06 First Exploit
- 2021-11-03 Exploited in Wild
- 2022-05-03 KEV Due Date
- 2024-09-30 CVE Updated
- 2024-11-04 EPSS Updated
CWE
- CWE-502: Deserialization of Untrusted Data
CAPEC
References (14)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.oracle.com/security-alerts/cpujul2021.html | 2022-10-25 |
| URL | Date | SRC |
|---|---|---|
| https://www.oracle.com/security-alerts/cpujan2020.html | 2022-10-25 | |
| https://www.oracle.com/security-alerts/cpujan2021.html | 2022-10-25 | |
| https://www.oracle.com/security-alerts/cpujul2020.html | 2022-10-25 | |
| https://www.oracle.com/security-alerts/cpuoct2020.html | 2022-10-25 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Coherence Search vendor "Oracle" for product "Coherence" | 3.7.1.0 Search vendor "Oracle" for product "Coherence" and version "3.7.1.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Coherence Search vendor "Oracle" for product "Coherence" | 12.1.3.0.0 Search vendor "Oracle" for product "Coherence" and version "12.1.3.0.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Coherence Search vendor "Oracle" for product "Coherence" | 12.2.1.3.0 Search vendor "Oracle" for product "Coherence" and version "12.2.1.3.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Coherence Search vendor "Oracle" for product "Coherence" | 12.2.1.4.0 Search vendor "Oracle" for product "Coherence" and version "12.2.1.4.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Commerce Platform Search vendor "Oracle" for product "Commerce Platform" | >= 11.3.0 <= 11.3.2 Search vendor "Oracle" for product "Commerce Platform" and version " >= 11.3.0 <= 11.3.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Commerce Platform Search vendor "Oracle" for product "Commerce Platform" | 11.0.0 Search vendor "Oracle" for product "Commerce Platform" and version "11.0.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Commerce Platform Search vendor "Oracle" for product "Commerce Platform" | 11.1.0 Search vendor "Oracle" for product "Commerce Platform" and version "11.1.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Commerce Platform Search vendor "Oracle" for product "Commerce Platform" | 11.2.0 Search vendor "Oracle" for product "Commerce Platform" and version "11.2.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Communications Diameter Signaling Router Search vendor "Oracle" for product "Communications Diameter Signaling Router" | >= 8.0.0 <= 8.2.2 Search vendor "Oracle" for product "Communications Diameter Signaling Router" and version " >= 8.0.0 <= 8.2.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Healthcare Data Repository Search vendor "Oracle" for product "Healthcare Data Repository" | 7.0.1 Search vendor "Oracle" for product "Healthcare Data Repository" and version "7.0.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Rapid Planning Search vendor "Oracle" for product "Rapid Planning" | 12.1 Search vendor "Oracle" for product "Rapid Planning" and version "12.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Rapid Planning Search vendor "Oracle" for product "Rapid Planning" | 12.2 Search vendor "Oracle" for product "Rapid Planning" and version "12.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Retail Assortment Planning Search vendor "Oracle" for product "Retail Assortment Planning" | 15.0 Search vendor "Oracle" for product "Retail Assortment Planning" and version "15.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Retail Assortment Planning Search vendor "Oracle" for product "Retail Assortment Planning" | 16.0 Search vendor "Oracle" for product "Retail Assortment Planning" and version "16.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Utilities Framework Search vendor "Oracle" for product "Utilities Framework" | >= 4.3.0.1.0 <= 4.3.0.6.0 Search vendor "Oracle" for product "Utilities Framework" and version " >= 4.3.0.1.0 <= 4.3.0.6.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Utilities Framework Search vendor "Oracle" for product "Utilities Framework" | 4.2.0.2.0 Search vendor "Oracle" for product "Utilities Framework" and version "4.2.0.2.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Utilities Framework Search vendor "Oracle" for product "Utilities Framework" | 4.2.0.3.0 Search vendor "Oracle" for product "Utilities Framework" and version "4.2.0.3.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Utilities Framework Search vendor "Oracle" for product "Utilities Framework" | 4.4.0.0.0 Search vendor "Oracle" for product "Utilities Framework" and version "4.4.0.0.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Utilities Framework Search vendor "Oracle" for product "Utilities Framework" | 4.4.0.2.0 Search vendor "Oracle" for product "Utilities Framework" and version "4.4.0.2.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Webcenter Portal Search vendor "Oracle" for product "Webcenter Portal" | 12.2.1.3.0 Search vendor "Oracle" for product "Webcenter Portal" and version "12.2.1.3.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Webcenter Portal Search vendor "Oracle" for product "Webcenter Portal" | 12.2.1.4.0 Search vendor "Oracle" for product "Webcenter Portal" and version "12.2.1.4.0" | - |
Affected
| ||||||