CVE-2020-14644CISA KEVEPSS p99.8%

CVE-2020-14644Oracle WebLogic Server Remote Code Execution Vulnerability

Oracle / WebLogic Server

Description

Oracle WebLogic Server, a product within the Fusion Middleware suite, contains a deserialization vulnerability. Unauthenticated attackers with network access via T3 or IIOP can exploit this vulnerability to achieve remote code execution.

Scoring

EPSS94.55% probability of exploitation · percentile 99.8% · 2026-06-17T12:03:21Z

CISA KEV entry

Added to KEV: 2024-09-18

(incoming)1

TypeTargetConfidenceTier
KEVEntryOracle WebLogic Server Remote Code Execution Vulnerabilitykev-cve-2020-146440%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Oracle WebLogic Server Unspecified Vulnerability
CVE
Oracle WebLogic Server Deserialization of Untrusted Data Vulnerability
CVE
Oracle Fusion Middleware Unspecified Vulnerability
CVE
Oracle Corporation WebLogic Server Remote Code Execution Vulnerability
CVE
Oracle WebLogic Server OS Command Injection Vulnerability
CVE
CVE-2025-21535
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.