CVE-2022-21243

🗓️ 19 Jan 2022 11:21:52Reported by oracleType

Vulnerability in Oracle Construction and Engineering's Primavera Portfolio Management produc

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-21243	19 Jan 202212:15	–	attackerkb
BDU FSTEC	The vulnerability of the Web Access component of the Primavera Portfolio Management software allows a perpetrator to trigger a service failure.	7 Apr 202200:00	–	bdu_fstec
CNNVD	Oracle Construction and Engineering Suite 安全漏洞	19 Jan 202200:00	–	cnnvd
CVE	CVE-2022-21243	19 Jan 202211:21	–	cve
EUVD	EUVD-2022-26468	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Oracle Construction and Engineering	19 Jan 202200:00	–	ncsc
NVD	CVE-2022-21243	19 Jan 202212:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - January 2022	18 Jan 202200:00	–	oracle
Prion	Code injection	19 Jan 202212:15	–	prion
RedhatCVE	CVE-2022-21243	23 May 202501:21	–	redhatcve

[
  {
    "product": "Primavera Portfolio Management",
    "vendor": "Oracle Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "18.0.0.0-18.0.3.0"
      },
      {
        "status": "affected",
        "version": "19.0.0.0-19.0.1.2"
      },
      {
        "status": "affected",
        "version": "20.0.0.0"
      },
      {
        "status": "affected",
        "version": "20.0.0.1"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpujan2022.html

19 Jan 2022 11:21Current

4.5Medium risk

Vulners AI Score4.5

CVSS 3.14.3

EPSS0.00813