|
|
|||
| Rule General Information |
|---|
| Release Date: | 2020-03-16 | |
| Rule Name: | Oracle Weblogic LimitFilter Insecure Deserialization Vulnerability (CVE-2020-2555) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Coherence 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0 in Oracle Fusion Middleware The Caching, CacheStore, and Invocation components have security vulnerabilities. An attacker could use this vulnerability to control Oracle Coherence, affecting Data confidentiality, integrity and availability. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, FreeBSD, Solaris, Other Unix, Mac OS | |
| Reference: | https://www.oracle.com/security-alerts/cpujan2020.html |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: https://www.oracle.com/security-alerts/cpujan2020.html |