CVE-2020-14642

HIGH Year: 2020
CVSS v3 Score
7.5
High
CVSS v2 Score
7.8
High
Weakness Type
CWE-404
View all →

Vulnerability Description

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: CacheStore). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Coherence. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Coherence. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

Related Vulnerabilities

CVE-2010-4038

HIGH
CVSS:7.5(High)

The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a shutdown action, which allows remote attackers to cause a denial of service (application crash) via unspeci...

CWE-4042010

CVE-2012-2805

HIGH
CVSS:7.5(High)

Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service.

CWE-4042012

CVE-2013-4133

HIGH
CVSS:7.5(High)

kde-workspace before 4.10.5 has a memory leak in plasma desktop

CWE-4042013

CVE-2014-125066

HIGH
CVSS:7.5(High)

A vulnerability was found in emmflo yuko-bot. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument title leads to denial of service. The attac...

CWE-4042014

CVE-2015-10025

HIGH
CVSS:7.5(High)

A vulnerability has been found in luelista miniConf up to 1.7.6 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file miniConf/MessageView.cs of the com...

CWE-4042015

CVE-2015-10085

HIGH
CVSS:7.5(High)

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious deli...

CWE-4042015