AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2020-2949: Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching, CacheStore, Invocation).

mediumvulnerability

security

Source: NVD/CVE DatabaseApril 15, 2020CVE-2020-2949

Summary

Oracle Coherence, a caching tool in Oracle Fusion Middleware, has a vulnerability (CVE-2020-2949) that allows attackers without authentication to read some data they shouldn't be able to access over a network. The vulnerability affects versions 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0, and has a CVSS score (a 0-10 rating of how severe a vulnerability is) of 5.3.

Vulnerability Details

CVSS Score

5.3(medium)

EPSS (30-day exploit probability)

EPSS: 1.4%

Classification

Attack SophisticationTrivial

Original source: https://nvd.nist.gov/vuln/detail/CVE-2020-2949

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%