๐ฅ This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)
CVE-2020-2555: Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Su
criticalvulnerability๐ฅ Actively Exploited
security
Summary
Oracle Coherence, a caching component in Oracle Fusion Middleware, has a critical vulnerability (CVE-2020-2555) that allows attackers without credentials to take over the system through network access via T3 (a network protocol). The vulnerability affects versions 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0, and has a CVSS score (a 0-10 rating of how severe a vulnerability is) of 9.8, indicating it is extremely serious.
Vulnerability Details
CVSS Score
9.8(critical)
EPSS (30-day exploit probability)
EPSS: 93.1%
Exploit Maturity
๐ฅ Actively Exploited
Classification
Attack SophisticationModerate
Original source: https://nvd.nist.gov/vuln/detail/CVE-2020-2555
First tracked: February 15, 2026 at 08:52 PM
Classified by LLM (prompt v3) ยท confidence: 95%