CVE-2020-2555-Vulnerability Oracle Coherence WebLogic Server 12.2.1.4 on Windows 10
iSpeech
c0d#: https://github.com/nu11secur1ty/ORACLE/tree/master/CVE-2020-2555
c0d#: https://github.com/nu11secur1ty/Windows10Exploits/tree/master/Undefined/CVE-2020-2555
1nf0: Successful attacks of this vulnerability can result in a takeover of Oracle Coherence. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
m0r#: https://www.exploit-db.com/exploits/48320
------------------------------------------------------------------------------------------------------------------------------------
m0r#: https://packetstormsecurity.com/files/157054/Oracle-Coherence-Fusion-Middleware-Remote-Code-Execution.html
m0r#: https://exploit.kitploit.com/2020/04/oracle-coherence-fusion-middleware.html
m0r#: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2555
m0r#: https://www.oracle.com/security-alerts/cpujan2020.html
m0r#: https://twitter.com/packet_storm/status/1245729105456267264
source
Gloss