AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2020-2915: Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching, CacheStore, Invocation).

criticalvulnerability

security

Source: NVD/CVE DatabaseApril 15, 2020CVE-2020-2915

Summary

Oracle Coherence, a caching component in Oracle Fusion Middleware, has a critical vulnerability (CVE-2020-2915) that allows attackers without authentication to gain complete control over the system through network protocols called IIOP and T3. The vulnerability affects multiple versions (3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0) and has a CVSS score (a 0-10 severity rating) of 9.8, indicating it is extremely dangerous.

Vulnerability Details

CVSS Score

9.8(critical)

EPSS (30-day exploit probability)

EPSS: 4.5%

Classification

Attack SophisticationModerate

Original source: https://nvd.nist.gov/vuln/detail/CVE-2020-2915

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%