NVD disclosure day

Published threat advisories for January 15, 2020

CVE advisoryKnown Exploit

CVE-2020-2555

Oracle Coherence Remote Code Execution Vulnerability

Halo Surface Signal: 3 out of 5 — possibly public-facing.

A vulnerability in Oracle Coherence, a Fusion Middleware component, can be exploited by an unauthenticated attacker with network access, potentially leading to a system takeover. This presents a significant business risk through compromise of critical systems and data. Affected organizations should prioritize addressin

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2020-2551

Oracle WebLogic Server Compromise Risk.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Oracle WebLogic Server can be exploited by unauthenticated attackers with network access, leading to complete server compromise. This poses a significant business risk by potentially impacting data confidentiality, integrity, and availability.

NVD published: • CISA KEV