Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_PRIMAVERA_P6_EPPM_CPU_JAN_2022.NASL
HistoryJan 20, 2022 - 12:00 a.m.

Oracle Primavera P6 Enterprise Project Portfolio Management (Jan 2022 CPU)

2022-01-2000:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
99

9.5 High

AI Score

Confidence

High

JSON

The version of Primavera P6 Enterprise Project Portfolio Management installed on the remote host are affected by a vulnerability as referenced in the January 2022 CPU advisory.

  • Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access (Apache Log4j)). Supported versions that are affected are 19.12.0.0-19.12.18.0, 20.12.0.0-20.12.12.0 and 21.12.0.0. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Primavera P6 Enterprise Project Portfolio Management. Successful attacks of this vulnerability can result in takeover of Primavera P6 Enterprise Project Portfolio Management. Note: This patch also addresses vulnerabilities CVE-2021-44228 and CVE-2021-45046. Customers need not apply the patches/mitigations of Security Alert CVE-2021-44228 and CVE-2021-45046 for this product. (CVE-2021-44832)

  • Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access (JDBC)). Supported versions that are affected are 17.12.0.0-17.12.20.0, 18.8.0.0-18.8.24.0, 19.12.0.0-19.12.17.0 and 20.12.0.0-20.12.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Primavera P6 Enterprise Project Portfolio Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Primavera P6 Enterprise Project Portfolio Management, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Primavera P6 Enterprise Project Portfolio Management. (CVE-2021-2351)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(156891);
  script_version("1.9");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/20");

  script_cve_id("CVE-2021-2351", "CVE-2021-44832");
  script_xref(name:"IAVA", value:"0001-A-0650");

  script_name(english:"Oracle Primavera P6 Enterprise Project Portfolio Management (Jan 2022 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by a vulnerability");
  script_set_attribute(attribute:"description", value:
"The version of Primavera P6 Enterprise Project Portfolio Management installed on the remote host are affected by a
vulnerability as referenced in the January 2022 CPU advisory.

  - Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and
    Engineering (component: Web Access (Apache Log4j)). Supported versions that are affected are 19.12.0.0-19.12.18.0,
    20.12.0.0-20.12.12.0 and 21.12.0.0. Difficult to exploit vulnerability allows high privileged attacker with network
    access via HTTP to compromise Primavera P6 Enterprise Project Portfolio Management. Successful attacks of this
    vulnerability can result in takeover of Primavera P6 Enterprise Project Portfolio Management. Note: This patch also
    addresses vulnerabilities CVE-2021-44228 and CVE-2021-45046. Customers need not apply the patches/mitigations of
    Security Alert CVE-2021-44228 and CVE-2021-45046 for this product. (CVE-2021-44832)

  - Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and
    Engineering (component: Web Access (JDBC)). Supported versions that are affected are 17.12.0.0-17.12.20.0,
    18.8.0.0-18.8.24.0, 19.12.0.0-19.12.17.0 and 20.12.0.0-20.12.9.0. Difficult to exploit vulnerability allows
    unauthenticated attacker with network access via Oracle Net to compromise Primavera P6 Enterprise Project
    Portfolio Management. Successful attacks require human interaction from a person other than the attacker and while
    the vulnerability is in Primavera P6 Enterprise Project Portfolio Management, attacks may significantly impact
    additional products. Successful attacks of this vulnerability can result in takeover of Primavera P6 Enterprise
    Project Portfolio Management. (CVE-2021-2351)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/a/tech/docs/cpujan2022cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujan2022.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the January 2022 Oracle Critical Patch Update advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-44832");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-2351");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/01/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/01/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/01/20");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:primavera_p6_enterprise_project_portfolio_management");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_primavera_p6_eppm.nbin");
  script_require_keys("installed_sw/Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM)", "www/weblogic");
  script_require_ports("Services/www", 8004);

  exit(0);
}

include('vcf.inc');
include('http.inc');

get_install_count(app_name:'Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM)', exit_if_zero:TRUE);

var port = get_http_port(default:8004);
get_kb_item_or_exit('www/weblogic/' + port + '/installed');

var app_info = vcf::get_app_info(app:'Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM)', port:port);


var constraints = [
  { 'min_version' : '17.12.0.0', 'fixed_version' : '17.12.20.3' },
  { 'min_version' : '18.8.0.0', 'fixed_version' : '18.8.25.0' },
  { 'min_version' : '19.12.0.0', 'fixed_version' : '19.12.18.1' },
  { 'min_version' : '20.12.0.0', 'fixed_version' : '20.12.12.1' },
  { 'min_version' : '21.12.0.0', 'fixed_version' : '21.12.1' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oracleprimavera_p6_enterprise_project_portfolio_managementcpe:/a:oracle:primavera_p6_enterprise_project_portfolio_management

Related

nessus 21
github 4
ibm 79
threatpost 2
githubexploit 12
redhat 10
osv 5
paloalto 1
citrix 1
hivepro 1
cisco 1
redhatcve 2
vmware 10
thn 6
prion 3
veracode 1
cve 2
suse 2
amazon 3
rapid7blog 2
checkpoint_advisories 1
talosblog 2
fortinet 1
nuclei 1
securelist 2
intel 1
typo3 1
mssecure 1
ubuntu 1
debiancve 1
kitploit 2
malwarebytes 1
mmpc 1
impervablog 1
cisa_kev 1
freebsd 1
huawei 1
mageia 1
f5 1
arista 1
qualysblog 2
attackerkb 1
debian 1
ubuntucve 1
checkpoint_security 1
symantec 1
avleonov 1
nessus
nessus
Oracle Primavera Gateway (Jan 2022 CPU)
2022-01-20 00:00:00
Amazon Linux 2022 : log4j (ALAS2022-2022-225)
2022-12-09 00:00:00
Amazon Linux AMI : java-1.8.0-openjdk, java-1.7.0-openjdk, java-1.6.0-openjdk (ALAS-2021-1553)
2021-12-18 00:00:00
github
github
GitHub’s response to Log4j vulnerability CVE-2021-44228
2021-12-13 19:06:34
Security Advisory for "Log4Shell"
2022-01-21 23:25:04
Remote code injection in Log4j
2021-12-10 00:40:56
ibm
ibm
Security Bulletin: IBM MQ Blockchain bridge dependencies are vulnerable to issues in Apache Log4j (CVE-2021-45105 & CVE-2021-44832)
2022-01-07 18:00:41
Security Bulletin: IBM Engineering Lifecycle Management products are vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105)
2022-01-28 19:58:40
Security Bulletin: IBM Tivoli Netcool/OMNIbus Common Integration Libraries is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
2022-01-27 01:45:15
threatpost
threatpost
Microsoft Sees Rampant Log4j Exploit Attempts, Testing
2022-01-04 22:49:54
APT ‘Aquatic Panda’ Targets Universities with Log4Shell Exploit Tools
2021-12-30 16:16:23
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-14 15:13:06
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-13 21:57:58
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-16 17:22:17
redhat
redhat
(RHSA-2022:0083) Moderate: Red Hat build of Eclipse Vert.x 4.1.8 security update
2022-01-20 12:09:30
(RHSA-2022:0203) Critical: Red Hat Fuse 7.8-7.10 security update
2022-01-20 09:22:41
(RHSA-2022:0222) Moderate: Red Hat Integration Camel Extensions for Quarkus 2.2 security update
2022-01-20 18:50:57
osv
osv
Security Advisory for "Log4Shell"
2022-01-21 23:25:04
CVE-2021-45046
2021-12-14 19:15:07
Incomplete fix for Apache Log4j vulnerability
2021-12-14 18:01:28
paloalto
paloalto
Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832
2021-12-10 21:45:00
citrix
citrix
Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832.
2021-12-11 17:15:50
hivepro
hivepro
Prophet Spider exploits Log4j and Citrix vulnerabilities to deploy webshells
2022-03-10 16:20:17
cisco
cisco
Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021
2021-12-10 18:45:00
redhatcve
redhatcve
CVE-2021-44832
2022-05-07 14:30:53
CVE-2021-45046
2022-05-07 14:27:31
vmware
vmware
VMware Response to Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228, CVE-2021-45046)
2021-12-10 00:00:00
VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)
2021-12-10 00:00:00
VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)
2021-12-10 00:00:00
thn
thn
Second Log4j Vulnerability (CVE-2021-45046) Discovered — New Patch Released
2021-12-15 05:26:00
Hackers Begin Exploiting Second Log4j Vulnerability as a Third Flaw Emerges
2021-12-16 06:24:00
Researchers Uncover New Drokbk Malware that Uses GitHub as a Dead Drop Resolver
2022-12-09 11:25:00
prion
prion
Default configuration
2021-12-14 19:15:00
Race condition
2022-06-17 13:15:00
Authorization
2022-08-24 16:15:00
veracode
veracode
Denial Of Service (DoS)
2021-12-15 00:30:50
cve
cve
CVE-2021-45046
2021-12-14 19:15:00
CVE-2021-4125
2022-08-24 16:15:00
suse
suse
Security update for log4j (important)
2021-12-20 00:00:00
Security update for log4j (important)
2021-12-17 00:00:00
amazon
amazon
Critical: java-17-amazon-corretto, java-11-amazon-corretto, java-1.8.0-openjdk, java-1.7.0-openjdk
2021-12-17 18:12:00
Critical: java-1.8.0-openjdk, java-1.7.0-openjdk, java-1.6.0-openjdk
2021-12-17 17:39:00
Critical: aws-kinesis-agent
2021-12-16 00:11:00
rapid7blog
rapid7blog
Widespread Exploitation of Critical Remote Code Execution in Apache Log4j
2021-12-10 15:30:00
How to Protect Your Applications Against Log4Shell With tCell
2021-12-15 14:58:14
checkpoint_advisories
checkpoint_advisories
Apache Log4j Remote Code Execution (CVE-2021-44228; CVE-2021-45046)
2021-12-10 00:00:00
talosblog
talosblog
Quarterly Report: Incident Response Trends in Q2 2022
2022-07-26 14:03:00
Quarterly Report: Incident Response Trends in Q3 2022
2022-10-25 12:00:00
fortinet
fortinet
Apache log4j2 log messages substitution (CVE-2021-44228)
2021-12-12 00:00:00
nuclei
nuclei
Apache Log4j2 - Remote Code Injection
2021-12-23 15:41:50
securelist
securelist
CVE-2021-44228 vulnerability in Apache Log4j library
2021-12-13 14:10:21
Answering Log4Shell-related questions
2021-12-20 15:45:30
intel
intel
Intel® Product Advisory for Apache Log4j2 Vulnerabilities (CVE-2021-44228 & CVE-2021-45046)
2022-01-12 00:00:00
typo3
typo3
Statement on Recent log4j/log4shell Vulnerabilities (CVE-2021-44228)
2021-12-16 00:00:00
mssecure
mssecure
MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations
2022-08-25 16:00:00
ubuntu
ubuntu
Apache Log4j 2 vulnerability
2021-12-15 00:00:00
debiancve
debiancve
CVE-2021-45046
2021-12-14 19:15:00
kitploit
kitploit
Log4J-Detector - Detects Log4J versions on your file-system within any application that are vulnerable to CVE-2021-44228 and CVE-2021-45046
2021-12-20 04:38:00
log4j-scan - A fully automated, accurate, and extensive scanner for finding vulnerable log4j hosts
2021-12-20 11:30:00
malwarebytes
malwarebytes
[Update: CISA issues Log4j vulnerabilities scanner] Log4j zero-day “Log4Shell” arrives just in time to ruin your weekend
2021-12-10 18:03:28
mmpc
mmpc
MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations
2022-08-25 16:00:00
impervablog
impervablog
Log4Shell log4j Remote Code Execution – The COVID of the Internet
2022-01-06 16:41:56
cisa_kev
cisa_kev
Apache Log4j2 Deserialization of Untrusted Data Vulnerability
2023-05-01 00:00:00
freebsd
freebsd
graylog -- remote code execution in log4j from user-controlled log input
2021-11-14 00:00:00
huawei
huawei
Security Advisory - Apache log4j2 remote code execution vulnerabilities in some Huawei products
2021-12-15 00:00:00
mageia
mageia
Updated log4j packages fix security vulnerability
2021-12-19 15:26:08
f5
f5
K32171392 : Apache Log4j2 vulnerability CVE-2021-45046
2021-12-16 00:00:00
arista
arista
Security Advisory 0070
2022-05-20 00:00:00
qualysblog
qualysblog
Is Your Web Application Exploitable By Log4Shell Vulnerability?
2021-12-15 17:06:36
How to Discover Log4Shell Vulnerabilities in Running Containers & Images
2021-12-27 19:39:34
attackerkb
attackerkb
CVE-2021-45046
2021-12-14 00:00:00
debian
debian
[SECURITY] [DSA 5022-1] apache-log4j2 security update
2021-12-16 10:29:17
ubuntucve
ubuntucve
CVE-2021-45046
2021-12-14 00:00:00
checkpoint_security
checkpoint_security
Check Point's response to Apache Log4j Remote Code Execution
2021-12-10 11:28:03
symantec
symantec
Symantec Security Advisory for Log4j Vulnerability
2021-12-11 01:06:47
avleonov
avleonov
Log4j “Log4Shell” RCE explained (CVE-2021-44228)
2021-12-26 22:07:17

9.5 High

AI Score

Confidence

High

JSON
Related for ORACLE_PRIMAVERA_P6_EPPM_CPU_JAN_2022.NASL
nessus21github4ibm79threatpost2githubexploit12redhat10osv5paloalto1citrix1hivepro1cisco1redhatcve2vmware10thn6prion3veracode1cve2suse2amazon3rapid7blog2checkpoint_advisories1talosblog2fortinet1nuclei1securelist2intel1typo31mssecure1ubuntu1debiancve1kitploit2malwarebytes1mmpc1impervablog1cisa_kev1freebsd1huawei1mageia1f51arista1qualysblog2attackerkb1debian1ubuntucve1checkpoint_security1symantec1avleonov1