EUVD-2022-26467

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in Primavera Portfolio Management allows low privileged network attacks affecting data access.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2022-21242	19 Jan 202212:15	–	attackerkb
CNNVD	Oracle Construction and Engineering Suite 安全漏洞	19 Jan 202200:00	–	cnnvd
CVE	CVE-2022-21242	19 Jan 202211:21	–	cve
Cvelist	CVE-2022-21242	19 Jan 202211:21	–	cvelist
NCSC	Vulnerabilities fixed in Oracle Construction and Engineering	19 Jan 202200:00	–	ncsc
NVD	CVE-2022-21242	19 Jan 202212:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - January 2022	18 Jan 202200:00	–	oracle
Prion	Code injection	19 Jan 202212:15	–	prion
RedhatCVE	CVE-2022-21242	22 May 202522:21	–	redhatcve
Vulnrichment	CVE-2022-21242	19 Jan 202211:21	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "a7504f3c-6e4d-3d96-b3a9-02686e3d82bb",
        "vendor": {
          "name": "Oracle Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "36834d73-705c-3480-836c-aa3078697ca4",
        "product": {
          "name": "Primavera Portfolio Management"
        },
        "product_version": "20.0.0.0"
      },
      {
        "id": "431810e8-7672-3120-94b0-e1e64c23df8f",
        "product": {
          "name": "Primavera Portfolio Management"
        },
        "product_version": "20.0.0.1"
      },
      {
        "id": "c0359861-4d9a-3093-98e0-10ca4ea67f80",
        "product": {
          "name": "Primavera Portfolio Management"
        },
        "product_version": "18.0.0.0-18.0.3.0"
      },
      {
        "id": "d012d679-5c5f-35c1-b179-08b388c820e7",
        "product": {
          "name": "Primavera Portfolio Management"
        },
        "product_version": "19.0.0.0-19.0.1.2"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpujan2022.html

03 Oct 2025 20:07Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.15.4

CVSS 24.9

EPSS0.00185

SSVC