163 matches found
Oracle Primavera Unifier Open Redirect (April 2024 CPU)
The versions of Primavera Unifier installed on the remote host are affected by an open redirect vulnerability as referenced in the April 2024 CPU advisory. Applications that use UriComponentsBuilder to parse an externally provided URL e.g. through a query parameter and perform validation checks o...
Oracle Primavera Unifier (April 2024 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory. - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as...
Oracle Primavera Unifier DoS (Apr 2024 CPU)
The versions of Primavera Unifier installed on the remote host are affected by a denial of service DoS vulnerability as referenced in the April 2024 CPU advisory. The vulnerability lies in the Primavera Unifier product of Oracle Construction and Engineering component: Integration Nimbus JOSE+JWT...
Oracle Primavera Unifier (January 2024 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Platform Google Guava. Supported versions that...
Oracle Primavera Unifier (October 2023 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface jQueryUI. Supported versions th...
Oracle Primavera Unifier (Jul 2023 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2023 CPU advisory. - Security-in-Depth issue in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface JSZip. This vulnerabilit...
Vulnerabilities fixed in Oracle Construction and Engineering
Vulnerabilities have been fixed in Oracle Construction and Engineering products. A malicious party could exploit them to carry out attacks that can result in the following categories of damage: Denial-of-Service DoS. Remote code execution User rights Access to sensitive data Access to system data...
Oracle Primavera Unifier (Apr 2023 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Document Management FreeType. Supported versions...
Vulnerabilities fixed in Oracle Construction and Engineering
Oracle has fixed vulnerabilities in Primavera P6 Enterprise Project Portfolio Management and Primavera Unifier. The vulnerability with reference CVE-2022-27404 allows an unauthenticated malicious party to execute arbitrary code under the rights of the application...
Oracle Primavera Unifier (Jan 2023 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface UnderscoreJS. Supported version...
Oracle Primavera Unifier (Oct 2022 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Document Management Apache Solr. Supported...
Oracle Primavera Unifier Unsupported Version Detection
According to its version, the installation of Oracle Primavera Unifier application running on the remote host is no longer supported per: - End Of Support Date or End Of Life Date for Primavera Unifier and Its Enabling Software Environment Doc ID 2526166.1 Lack of support implies that no new...
Vulnerabilities fixed in Oracle Primavera
Oracle has fixed vulnerabilities in the following products: Primavera Gateway Primavera P6 Enterprise Project Portfolio Management Primavera Unifier The vulnerabilities potentially enable a malicious party to execute attacks that lead to denial-of-service DoS. An overview of all fixed...
Oracle Primavera Unifier (Jul 2022 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Document Management jackson-databind. Supported...
Vulnerabilities fixed in Oracle Construction and Engineering
Oracle has fixed vulnerabilities in the following Construction and Engineering products: Primavera Unifier Instantis EnterpriseTrack The vulnerabilities allow a malicious person to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS...
Oracle Primavera Unifier (Apr 2022 CPU)
The version of Primavera Unifier installed on the remote host is affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Platform dojo. Supported versions that are affecte...
Vulnerabilities fixed in Oracle Construction and Engineering
Oracle has fixed vulnerabilities in the following products: Primavera P6 Enterprise Project Portfolio Management Primavera P6 Professional Project Management Primavera Portfolio Management Primavera Data Warehouse Primavera Analytics Primavera Unifier Instantis EnterpriseTrack Primavera Gateway T...
Oracle Primavera Unifier (Jan 2022 CPU)
The version of Primavera Unifier installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Platform, Data Persistence OWASP Java HTML...
Oracle Primavera Gateway (Oct 2021 CPU)
The version of Primavera Gateway installed on the remote host is affected by multiple vulnerabilities as referenced in the October 2021 CPU advisory, including the following: - Vulnerability in the Oracle Retail Store Inventory Management product of Oracle Retail Applications component: SIM...
Oracle Primavera Unifier (Oct 2021 CPU)
The version of Primavera Unifier installed on the remote host is affected by multiple vulnerabilities as referenced in the October 2021 CPU advisory, including the following: - An easily exploitable vulnerability in the File Management component of Primavera Unifier that allows an unauthenticated...