Lucene search
+L

762 matches found

Tenable Nessus
Tenable Nessus
added 2025/04/17 12:0 a.m.19 views

Oracle Primavera Gateway (Apr 2025 CPU)

The versions of Primavera Gateway installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2025 CPU advisory. - Vulnerability in the Primavera Gateway product of Oracle Construction and Engineering component: Admin Google Protobuf-Java. Supported versions...

8.7CVSS6.5AI score0.02772EPSS
Exploits1References5
NCSC
NCSC
added 2025/04/16 2:59 p.m.7 views

Vulnerabilities fixed in Oracle Enterprise Manager

Oracle fixed vulnerabilities in Oracle Enterprise Manager The vulnerabilities allow unauthenticated attackers to compromise systems via HTTP or SSH, which can lead to denial-of-service DoS or confidential information disclosure. Specifically in Apache MINA's ObjectSerializationDecoder, there is a...

10CVSS7.7AI score0.23932EPSS
Exploits3References1
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.6 views

The vulnerability of the Web Access component of the Oracle Primavera P6 Enterprise Project Portfolio Management application allows a attacker to gain read access to data or modify data.

The vulnerability of the Web Access component of the Oracle Primavera P6 Enterprise Project Portfolio Management application is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain read access to data or modify data through HTTP...

5.5CVSS7.7AI score0.00253EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 2:21 p.m.11 views

CVE-2020-2556

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Core. Supported versions that are affected are 16.2.0.0-16.2.19.0, 17.12.0.0-17.12.16.0, 18.8.0.0-18.8.16.0, 19.12.0.0 and 20.1.0.0. Easily exploitable vulnerability...

7.3CVSS6.8AI score0.00429EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 11:1 a.m.11 views

CVE-2024-21095

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 19.12.0-19.12.22, 20.12.0-20.12.21, 21.12.0-21.12.18, 22.12.0-22.12.12 and 23.12.0-23.12.2. Easily exploitable...

8.2CVSS6.8AI score0.00527EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/01/24 12:0 a.m.8 views

The vulnerability of the Web Access component of the Oracle Primavera P6 Enterprise Project Portfolio Management application allows a malicious individual to gain unauthorized access to read, modify, add, or delete data.

The vulnerability of the Web Access component of the Oracle Primavera P6 Enterprise Project Portfolio Management application relates to deficiencies in the authorization process. Exploiting this vulnerability could allow an attacker to gain unauthorized access to read, modify, add, or delete data...

5.5CVSS7.7AI score0.00187EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.30 views

Oracle Primavera P6 Enterprise Project Portfolio Management (January 2025 CPU)

The versions of Primavera P6 Enterprise Project Portfolio Management installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2025 CPU advisory. - Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and...

5.4CVSS8.3AI score0.00253EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.22 views

Oracle Primavera Unifier (January 2025 CPU)

The versions of Primavera Unifier installed on the remote host are affected a vulnerability as referenced in the January 2025 CPU advisory. - Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU...

4.3CVSS6.5AI score0.01241EPSS
Exploits0References3
OSV
OSV
added 2025/01/21 9:15 p.m.4 views

CVE-2025-21558

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0 and 22.12.1.0. Easily exploitable vulnerability allows low privileged...

5.4CVSS7.3AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2025/01/21 9:15 p.m.16 views

CVE-2025-21558

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0 and 22.12.1.0. Easily exploitable vulnerability allows low privileged...

5.4CVSS0.00253EPSS
Exploits0References1
OSV
OSV
added 2025/01/21 9:15 p.m.6 views

CVE-2025-21528

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0, 22.12.1.0-22.12.16.0 and 23.12.1.0-23.12.10.0. Easily exploitable...

4.3CVSS7.3AI score0.00207EPSS
Exploits0References1
NVD
NVD
added 2025/01/21 9:15 p.m.26 views

CVE-2025-21526

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0, 22.12.1.0-22.12.16.0 and 23.12.1.0-23.12.10.0. Easily exploitable...

5.4CVSS0.00187EPSS
Exploits0References1
NVD
NVD
added 2025/01/21 9:15 p.m.18 views

CVE-2025-21528

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0, 22.12.1.0-22.12.16.0 and 23.12.1.0-23.12.10.0. Easily exploitable...

4.3CVSS0.00207EPSS
Exploits0References1
OSV
OSV
added 2025/01/21 9:15 p.m.4 views

CVE-2025-21526

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0, 22.12.1.0-22.12.16.0 and 23.12.1.0-23.12.10.0. Easily exploitable...

5.4CVSS7.3AI score0.00187EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.12 views

Oracle Construction and Engineering Suite 安全漏洞

Oracle Construction and Engineering Suite is a portfolio management solution suite product for construction projects from Oracle Corporation USA. A security vulnerability exists in Oracle Construction and Engineering Suite. An attacker could exploit the vulnerability to update, insert, or delete...

4.3CVSS8.6AI score0.00207EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.14 views

Oracle Construction and Engineering Suite 安全漏洞

Oracle Construction and Engineering Suite is a portfolio management solution suite product for construction projects from Oracle Corporation USA. A security vulnerability exists in Oracle Construction and Engineering Suite. An attacker could exploit the vulnerability to update, insert, or delete...

5.4CVSS8.6AI score0.00187EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/21 12:0 a.m.9 views

PT-2025-4250 · Oracle · Primavera P6 Enterprise Project Portfolio Management

Name of the Vulnerable Software and Affected Versions: Primavera P6 Enterprise Project Portfolio Management versions 20.12.1.0 through 20.12.21.5 Primavera P6 Enterprise Project Portfolio Management versions 21.12.1.0 through 21.12.20.0 Primavera P6 Enterprise Project Portfolio Management version...

6.4CVSS8.3AI score0.00207EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.8 views

Oracle Construction and Engineering Suite 安全漏洞

Oracle Construction and Engineering Suite is a portfolio management solution suite product for construction projects from Oracle Corporation USA. A security vulnerability exists in Primavera P6 Enterprise Project Portfolio Management for Oracle Construction and Engineering Suite. An attacker coul...

5.4CVSS8.2AI score0.00253EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/25 12:0 a.m.4 views

PT-2024-10260 · Oracle · Primavera P6 Enterprise Project Portfolio Management

Name of the Vulnerable Software and Affected Versions: Primavera P6 Enterprise Project Portfolio Management versions 20.12.1.0 through 20.12.21.5 Primavera P6 Enterprise Project Portfolio Management versions 21.12.1.0 through 21.12.20.0 Primavera P6 Enterprise Project Portfolio Management version...

5.5CVSS7.8AI score0.00187EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/06 8:38 a.m.25 views

Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to a denial of service when using the openidConnectClient-1.0 or socialLogin-1.0 feature.(CVE-2024-22353)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Industry Solutions including Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities, Maximo Adapter for Primavera, and...

7.5CVSS7.7AI score0.00818EPSS
Exploits0Affected Software1
Rows per page
Query Builder