Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_PRIMAVERA_UNIFIER_CPU_JAN_2020.NASL
HistoryJan 30, 2020 - 12:00 a.m.

Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2020 CPU)

2020-01-3000:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
44

8.1 High

AI Score

Confidence

Low

JSON

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.1.x or 16.2.x prior to 16.2.16.0, or 17.7.x through 17.12.x prior to 17.12.11.2, or 18.8.x prior to 18.8.15, or 19.12.x prior to 19.12.0.1. It is, therefore, affected by multiple vulnerabilities:

  • A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10 used in Primavera Unifier.
    (CVE-2019-14540)

  • A memory exhaustion flaw exists in Apache Tika’s RecursiveParserWrapper versions 1.7 - 1.21 used in Primavera Unifier. (CVE-2019-10088)

  • A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to build from source. The successor to Axis 1.x is Axis2, the latest version is 1.7.9 and is not vulnerable to this issue. (CVE-2019-0227)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(133359);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/28");

  script_cve_id(
    "CVE-2014-3596",
    "CVE-2018-8032",
    "CVE-2019-0227",
    "CVE-2019-10088",
    "CVE-2019-10093",
    "CVE-2019-10094",
    "CVE-2019-12415",
    "CVE-2019-14540",
    "CVE-2019-16335"
  );
  script_bugtraq_id(107867);
  script_xref(name:"IAVA", value:"2020-A-0140");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");

  script_name(english:"Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2020 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"An application running on the remote web server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version number, the Oracle Primavera
Unifier installation running on the remote web server is 16.1.x or
16.2.x prior to 16.2.16.0, or 17.7.x through 17.12.x prior to
17.12.11.2, or 18.8.x prior to 18.8.15, or 19.12.x prior to
19.12.0.1. It is, therefore, affected by multiple vulnerabilities:

  - A Polymorphic Typing issue was discovered in FasterXML
    jackson-databind before 2.9.10 used in Primavera Unifier.
    (CVE-2019-14540)

  - A memory exhaustion flaw exists in Apache Tika's RecursiveParserWrapper
    versions 1.7 - 1.21 used in Primavera Unifier. (CVE-2019-10088)

  - A Server Side Request Forgery (SSRF) vulnerability affected the
    Apache Axis 1.4 distribution that was last released in 2006. Security
    and bug commits commits continue in the projects Axis 1.x Subversion
    repository, legacy users are encouraged to build from source. The
    successor to Axis 1.x is Axis2, the latest version is 1.7.9 and is
    not vulnerable to this issue. (CVE-2019-0227)

Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number.");
  # https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=325111950546185&id=2620236.1&_afrWindowMode=0&_adf.ctrl-state=nxv3x2076_4
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?b244b132");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Oracle Primavera Unifier version 16.2.16.0 / 17.12.11.2 / 18.8.15 / 19.12.0.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-16335");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2020/01/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/01/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/01/30");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:primavera_unifier");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_primavera_unifier.nbin");
  script_require_keys("installed_sw/Oracle Primavera Unifier", "www/weblogic");
  script_require_ports("Services/www", 8002);

  exit(0);
}

include('http.inc');
include('vcf.inc');

get_install_count(app_name:'Oracle Primavera Unifier', exit_if_zero:TRUE);

port = get_http_port(default:8002);
get_kb_item_or_exit('www/weblogic/' + port + '/installed');

app_info = vcf::get_app_info(app:'Oracle Primavera Unifier', port:port);

vcf::check_granularity(app_info:app_info, sig_segments:3);

constraints = [
  { 'min_version' : '16.1', 'fixed_version' : '16.2.16.0' },
  { 'min_version' : '17.7', 'fixed_version' : '17.12.11.2' },
  { 'min_version' : '18.8', 'fixed_version' : '18.8.15' },
  { 'min_version' : '19.12', 'fixed_version' : '19.12.0.1' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oracleprimavera_unifiercpe:/a:oracle:primavera_unifier

Related

ibm 24
nessus 21
redhatcve 5
osv 20
ubuntucve 10
openvas 32
debiancve 8
github 9
veracode 8
prion 9
cve 9
symantec 5
fedora 11
debian 5
oraclelinux 2
redhat 2
mageia 2
centos 1
amazon 1
almalinux 1
gitlab 1
suse 3
githubexploit 2
rhino 1
checkpoint_advisories 1
packetstorm 1
exploitpack 1
zdt 1
f5 2
cloudfoundry 1
ibm
ibm
Security Bulletin: Apache Tika as used by IBM QRadar SIEM is vulnerable to denial of service (CVE-2019-10088, CVE-2019-10093, CVE-2019-10094)
2019-12-20 08:47:33
Security Bulletin: Multiple Vulnerabilities found in Axis.jar V1.x may affect IBM Content Collector for SAP Applications
2021-03-26 17:24:42
Security Bulletin: Multiple vulnerabilities in Apache Axis affect IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite
2023-02-02 21:04:46
nessus
nessus
Oracle Primavera Gateway Multiple Vulnerabilities (Jan 2020 CPU)
2020-01-15 00:00:00
Fedora 30 : jackson-annotations / jackson-bom / jackson-core / jackson-databind / etc (2019-b171554877)
2019-10-14 00:00:00
Debian DLA-1943-1 : jackson-databind security update
2019-10-03 00:00:00
redhatcve
redhatcve
CVE-2019-16335
2021-08-22 13:15:03
CVE-2018-8032
2018-08-02 21:18:45
CVE-2019-12415
2020-02-13 11:44:58
osv
osv
Polymorphic Typing issue in FasterXML jackson-databind
2019-09-23 18:33:45
CVE-2019-16335
2019-09-15 22:15:10
jackson-databind - security update
2019-10-02 00:00:00
ubuntucve
ubuntucve
CVE-2019-16335
2019-09-15 00:00:00
CVE-2019-10093
2019-08-02 00:00:00
CVE-2019-10094
2019-08-02 00:00:00
openvas
openvas
Apache Tika Server 1.7 < 1.22 Multiple Vulnerabilities
2019-08-05 00:00:00
Apache Axis <= 1.4 Multiple Vulnerabilities
2022-07-29 00:00:00
Fedora Update for jackson-parent FEDORA-2019-b171554877
2019-10-12 00:00:00
debiancve
debiancve
CVE-2019-16335
2019-09-15 22:15:00
CVE-2019-10094
2019-08-02 19:15:00
CVE-2019-10093
2019-08-02 19:15:00
github
github
Polymorphic Typing issue in FasterXML jackson-databind
2019-09-23 18:33:45
Allocation of Resources Without Limits or Throttling in Apache Tika
2019-08-06 01:43:38
Allocation of Resources Without Limits or Throttling in Apache Tika
2019-08-06 01:43:35
veracode
veracode
Deserialization Of Untrusted Data
2019-09-16 07:58:38
Denial Of Service (DoS)
2019-08-05 07:37:43
Denial Of Service (DoS)
2019-08-05 06:33:47
prion
prion
Design/Logic Flaw
2019-09-15 22:15:00
Code injection
2019-08-02 19:15:00
Code injection
2019-08-02 19:15:00
cve
cve
CVE-2019-16335
2019-09-15 22:15:00
CVE-2019-10094
2019-08-02 19:15:00
CVE-2018-8032
2018-08-02 13:29:00
symantec
symantec
FasterXML Jackson-databind CVE-2019-14540 Information Disclosure Vulnerability
2020-01-14 00:00:00
Apache POI CVE-2019-12415 XML External Entity Information Disclosure Vulnerability
2019-10-23 00:00:00
Apache Tika CVE-2019-10088 Denial of Service Vulnerability
2019-08-02 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: jackson-annotations-2.10.0-1.fc30
2019-10-12 00:29:48
[SECURITY] Fedora 31 Update: jackson-parent-2.10-1.fc31
2019-10-26 17:30:55
[SECURITY] Fedora 30 Update: jackson-parent-2.10-1.fc30
2019-10-12 00:29:49
debian
debian
[SECURITY] [DLA 1943-1] jackson-databind security update
2019-10-02 22:48:42
[SECURITY] [DLA 2821-1] axis security update
2021-11-17 11:35:47
[SECURITY] [DSA 4542-1] jackson-databind security update
2019-10-06 08:28:37
oraclelinux
oraclelinux
axis security update
2014-09-15 00:00:00
pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
2020-05-05 00:00:00
redhat
redhat
(RHSA-2015:1010) Important: Red Hat JBoss Portal 6.2.0 security update
2015-05-14 15:13:19
(RHSA-2014:1193) Important: axis security update
2014-09-15 00:00:00
mageia
mageia
Updated axis packages fix CVE-2014-3596
2014-12-26 20:04:58
Updated axis packages fix security vulnerability
2018-11-03 14:55:18
centos
centos
axis security update
2014-09-15 16:46:18
amazon
amazon
Important: axis
2014-09-17 21:47:00
almalinux
almalinux
Moderate: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
2020-04-28 09:00:20
gitlab
gitlab
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2018-10-16 00:00:00
suse
suse
Security update for axis (moderate)
2018-10-18 00:13:19
Security update for axis (moderate)
2019-06-03 00:00:00
Security update for axis (moderate)
2019-06-07 00:00:00
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Fasterxml Jackson-Databind
2019-08-21 03:19:19
Exploit for Server-Side Request Forgery in Apache Axis
2019-10-27 14:42:54
rhino
rhino
CVE-2019-0227: Expired Domain to Remote Code Execution in Apache Axis
2019-04-09 10:30:52
checkpoint_advisories
checkpoint_advisories
Apache Axis Remote Code Execution (CVE-2019-0227)
2019-04-22 00:00:00
packetstorm
packetstorm
Apache Axis 1.4 Remote Code Execution
2019-04-10 00:00:00
exploitpack
exploitpack
Apache Axis 1.4 - Remote Code Execution
2019-04-09 00:00:00
zdt
zdt
Apache Axis 1.4 - Remote Code Execution Exploit
2019-04-09 00:00:00
f5
f5
K16821 : Apache Axis vulnerability CVE-2014-3596
2015-11-11 00:00:00
SOL16821 - Apache Axis vulnerability CVE-2014-3596
2015-06-29 00:00:00
cloudfoundry
cloudfoundry
Various CVEs: UAA consumes vulnerable versions of FasterXML jackson-databind | Cloud Foundry
2019-11-13 00:00:00

8.1 High

AI Score

Confidence

Low

JSON
Related for ORACLE_PRIMAVERA_UNIFIER_CPU_JAN_2020.NASL
ibm24nessus21redhatcve5osv20ubuntucve10openvas32debiancve8github9veracode8prion9cve9symantec5fedora11debian5oraclelinux2redhat2mageia2centos1amazon1almalinux1gitlab1suse3githubexploit2rhino1checkpoint_advisories1packetstorm1exploitpack1zdt1f52cloudfoundry1