CVE-2020-2883
Oracle WebLogic Server Unspecified Vulnerability
CVSS
—
Sin CVSS
EPSS
94.9%
p100
KEV
SÍ
7 ene 2025
Exploit Today
80
0-100
Publicado: — · Última mod.: —
94.9%EPSS · 30 días94.9%
2026-06-302026-07-16
Producto
Oracle / WebLogic Server
Vulnerabilidad
Oracle WebLogic Server Unspecified Vulnerability
Añadido a KEV
7 ene 2025
Remediar antes de
28 ene 2025
Uso conocido en ransomware
No
Descripción resumida
Oracle WebLogic Server, a product within the Fusion Middleware suite, contains an unspecified vulnerability exploitable by an unauthenticated attacker with network access via IIOP or T3.
Acción requerida
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notas
https://www.oracle.com/security-alerts/cpuapr2020.html ; https://nvd.nist.gov/vuln/detail/CVE-2020-2883
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2020-14882—100.0%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2017-10271—100.0%
KEV—80Oracle Corporation WebLogic Server Remote Code Execution Vulnerability—CVE-2019-2725—100.0%
KEV—80Oracle WebLogic Server, Injection—CVE-2023-21839—100.0%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—CVE-2020-14750—99.9%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2018-2628—99.9%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—