Lucene search
K

163 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.49 views

Oracle Primavera Unifier Open Redirect (April 2024 CPU)

The versions of Primavera Unifier installed on the remote host are affected by an open redirect vulnerability as referenced in the April 2024 CPU advisory. Applications that use UriComponentsBuilder to parse an externally provided URL e.g. through a query parameter and perform validation checks o...

8.1CVSS6.5AI score0.03967EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.100 views

Oracle Primavera Unifier (April 2024 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory. - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as...

8.8CVSS7.2AI score0.99999EPSS
Exploits23References7
Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.42 views

Oracle Primavera Unifier DoS (Apr 2024 CPU)

The versions of Primavera Unifier installed on the remote host are affected by a denial of service DoS vulnerability as referenced in the April 2024 CPU advisory. The vulnerability lies in the Primavera Unifier product of Oracle Construction and Engineering component: Integration Nimbus JOSE+JWT...

7.5CVSS6.4AI score0.00814EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/18 12:0 a.m.34 views

Oracle Primavera Unifier (January 2024 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Platform Google Guava. Supported versions that...

9.1CVSS6.4AI score0.01713EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/10/19 12:0 a.m.20 views

Oracle Primavera Unifier (October 2023 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface jQueryUI. Supported versions th...

6.1CVSS6.8AI score0.01933EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/07/26 12:0 a.m.45 views

Oracle Primavera Unifier (Jul 2023 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2023 CPU advisory. - Security-in-Depth issue in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface JSZip. This vulnerabilit...

7.5CVSS6.9AI score0.46836EPSS
Exploits2References5
NCSC
NCSC
added 2023/07/19 12:0 a.m.12 views

Vulnerabilities fixed in Oracle Construction and Engineering

Vulnerabilities have been fixed in Oracle Construction and Engineering products. A malicious party could exploit them to carry out attacks that can result in the following categories of damage: Denial-of-Service DoS. Remote code execution User rights Access to sensitive data Access to system data...

9.8CVSS8AI score0.46836EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2023/04/19 12:0 a.m.64 views

Oracle Primavera Unifier (Apr 2023 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Document Management FreeType. Supported versions...

9.8CVSS7.2AI score0.03307EPSS
Exploits3References5
NCSC
NCSC
added 2023/04/19 12:0 a.m.3 views

Vulnerabilities fixed in Oracle Construction and Engineering

Oracle has fixed vulnerabilities in Primavera P6 Enterprise Project Portfolio Management and Primavera Unifier. The vulnerability with reference CVE-2022-27404 allows an unauthenticated malicious party to execute arbitrary code under the rights of the application...

9.8CVSS7.7AI score0.03307EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/01/20 12:0 a.m.85 views

Oracle Primavera Unifier (Jan 2023 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface UnderscoreJS. Supported version...

7.5CVSS6.2AI score0.04087EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2022/10/20 12:0 a.m.44 views

Oracle Primavera Unifier (Oct 2022 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Document Management Apache Solr. Supported...

9.8CVSS6.5AI score0.22709EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2022/08/18 12:0 a.m.42 views

Oracle Primavera Unifier Unsupported Version Detection

According to its version, the installation of Oracle Primavera Unifier application running on the remote host is no longer supported per: - End Of Support Date or End Of Life Date for Primavera Unifier and Its Enabling Software Environment Doc ID 2526166.1 Lack of support implies that no new...

6AI score
Exploits0References1
NCSC
NCSC
added 2022/07/20 12:0 a.m.5 views

Vulnerabilities fixed in Oracle Primavera

Oracle has fixed vulnerabilities in the following products: Primavera Gateway Primavera P6 Enterprise Project Portfolio Management Primavera Unifier The vulnerabilities potentially enable a malicious party to execute attacks that lead to denial-of-service DoS. An overview of all fixed...

7.5CVSS6.6AI score0.0486EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/07/20 12:0 a.m.46 views

Oracle Primavera Unifier (Jul 2022 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Document Management jackson-databind. Supported...

7.5CVSS7AI score0.0486EPSS
Exploits1References5
NCSC
NCSC
added 2022/04/20 12:0 a.m.9 views

Vulnerabilities fixed in Oracle Construction and Engineering

Oracle has fixed vulnerabilities in the following Construction and Engineering products: Primavera Unifier Instantis EnterpriseTrack The vulnerabilities allow a malicious person to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS...

9.8CVSS9.3AI score0.97906EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2022/04/20 12:0 a.m.92 views

Oracle Primavera Unifier (Apr 2022 CPU)

The version of Primavera Unifier installed on the remote host is affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Platform dojo. Supported versions that are affecte...

9.8CVSS6.8AI score0.44515EPSS
Exploits3References4
NCSC
NCSC
added 2022/01/19 12:0 a.m.11 views

Vulnerabilities fixed in Oracle Construction and Engineering

Oracle has fixed vulnerabilities in the following products: Primavera P6 Enterprise Project Portfolio Management Primavera P6 Professional Project Management Primavera Portfolio Management Primavera Data Warehouse Primavera Analytics Primavera Unifier Instantis EnterpriseTrack Primavera Gateway T...

9.8CVSS9.5AI score0.99999EPSS
Exploits34
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.146 views

Oracle Primavera Unifier (Jan 2022 CPU)

The version of Primavera Unifier installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Platform, Data Persistence OWASP Java HTML...

9.8CVSS7AI score0.97906EPSS
Exploits17References9
Tenable Nessus
Tenable Nessus
added 2021/10/21 12:0 a.m.38 views

Oracle Primavera Gateway (Oct 2021 CPU)

The version of Primavera Gateway installed on the remote host is affected by multiple vulnerabilities as referenced in the October 2021 CPU advisory, including the following: - Vulnerability in the Oracle Retail Store Inventory Management product of Oracle Retail Applications component: SIM...

8.3CVSS6.4AI score0.2241EPSS
Exploits8References7
Tenable Nessus
Tenable Nessus
added 2021/10/20 12:0 a.m.62 views

Oracle Primavera Unifier (Oct 2021 CPU)

The version of Primavera Unifier installed on the remote host is affected by multiple vulnerabilities as referenced in the October 2021 CPU advisory, including the following: - An easily exploitable vulnerability in the File Management component of Primavera Unifier that allows an unauthenticated...

7.5CVSS6.3AI score0.2241EPSS
Exploits2References6
Rows per page
Query Builder