AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2021-2428: Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are

highvulnerability

security

Source: NVD/CVE DatabaseJuly 21, 2021CVE-2021-2428

Summary

Oracle Coherence (a data management tool in Oracle Fusion Middleware) has a serious vulnerability that allows an attacker on the network to take over the system without needing to log in, if they exploit it through T3 or IIOP (communication protocols). The vulnerability affects versions 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0, and has a CVSS score (a 0-10 rating of how severe a vulnerability is) of 8.1, indicating it is a high-severity risk.

Vulnerability Details

CVSS Score

8.1(high)

EPSS (30-day exploit probability)

EPSS: 1.1%

Classification

Attack SophisticationModerate

Original source: https://nvd.nist.gov/vuln/detail/CVE-2021-2428

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%