Lucene search
K

5 matches found

VulnCheck KEV
VulnCheck KEV
added 2024/11/20 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-14756

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core Components. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

9.8CVSS7.3AI score0.74753EPSS
Exploits4References1
Check Point Advisories
Check Point Advisories
added 2021/03/15 12:0 a.m.10 views

Oracle Coherence Remote Code Execution (CVE-2020-14756)

An insecure deserialization vulnerability exists in Oracle Coherence. This vulnerability is due to a lack of deserialization filtering when Coherence ExternalizableLite classes are deserialized...

7.5CVSS3.7AI score0.74753EPSS
Exploits4
Gitee
Gitee
added 2021/01/27 10:49 a.m.7 views

Exploit for CVE-2020-14756

This is an exploit module for the CVE-2020-14756 vulnerability in Oracle WebLogic. The vulnerability allows for remote code execution RCE due to a deserialization issue in the coherence.jar library. The exploit is written in Python and uses the socket library to establish a connection to the...

9.8CVSS9.8AI score0.74753EPSS
Exploits4
GithubExploit
GithubExploit
added 2021/01/27 1:24 a.m.291 views

Exploit for CVE-2020-14756

CVE-2020-14756 WebLogic T3/IIOP RCE ExternalizableHelper.class...

9.8CVSS9.5AI score0.97116EPSS
Exploits29
CVE
CVE
added 2021/01/20 2:49 p.m.149 views

CVE-2020-14756

CVE-2020-14756 : An insecure deserialization vulnerability in Oracle Coherence (Fusion Middleware Core Components) allows unauthenticated remote code execution via IIOP/T3. Affected versions include 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0. Successful exploitation can lead to t...

9.8CVSS9.3AI score0.74753EPSS
Exploits4References2Affected Software2
Rows per page
Query Builder