Lucene search
K

163 matches found

Tenable Nessus
Tenable Nessus
added 2020/07/15 12:0 a.m.270 views

Oracle Primavera Unifier Multiple Vulnerabilities (Jul 2020 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.1.x or 16.2.x prior to 16.2.16.2, or 17.7.x through 17.12.x prior to 17.12.11.4, or 18.8.x prior to 18.8.17, or 19.12.x prior to 19.12.7. It is, therefore, affected by...

9.8CVSS7.2AI score0.18671EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.50 views

Oracle Primavera Unifier (Apr 2020 CPU)

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the CPUApr2020 advisory. - initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows X...

9.8CVSS7.1AI score0.162EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/01/30 12:0 a.m.82 views

Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2020 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.1.x or 16.2.x prior to 16.2.16.0, or 17.7.x through 17.12.x prior to 17.12.11.2, or 18.8.x prior to 18.8.15, or 19.12.x prior to 19.12.0.1. It is, therefore, affected by...

9.8CVSS7AI score0.86503EPSS
Exploits8References10
Tenable Nessus
Tenable Nessus
added 2019/10/21 12:0 a.m.52 views

Oracle Primavera Unifier Multiple Vulnerabilities (Oct 2019 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.1.x or 16.2.x prior to 16.2.15.10, or 17.7.x through 17.12.x prior to 17.12.11.1, or 18.8.x prior to 18.8.13.0. It is, therefore, affected by multiple vulnerabilities: -...

9.8CVSS7.6AI score0.87218EPSS
Exploits9References6
Tenable Nessus
Tenable Nessus
added 2019/07/19 12:0 a.m.54 views

Oracle Primavera Unifier Multiple Vulnerabilities (Jul 2019 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 15.x or 16.x prior to 16.2.15.9 or 17.7.x prior to 17.12.11 or 18.x prior to 18.8.11. It is, therefore, affected by multiple vulnerabilities: - A deserialization...

9.8CVSS7.8AI score0.77508EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2019/04/19 12:0 a.m.84 views

Oracle Primavera Unifier Multiple Vulnerabilities (Apr 2019 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.x prior to 16.2.15.7 or 17.7.x prior to 17.12.10 or 18.x prior to 18.8.6. It is, therefore, affected by multiple vulnerabilities: - A deserialization vulnerability in...

9.8CVSS8.1AI score0.94999EPSS
Exploits12References9
BDU FSTEC
BDU FSTEC
added 2019/02/12 12:0 a.m.5 views

The vulnerability of the Web Access component of the Oracle Primavera Unifier application, which allows a hacker to gain unauthorized access to data.

The vulnerability of the Web Access component of the Oracle Primavera Unifier application, which is used for automating project management processes, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized acces...

6.1CVSS6.7AI score0.01131EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/01/28 12:0 a.m.3 views

The vulnerability of the Core component (jackson-databind) of the Primavera Unifier application, which allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the Core component jackson-databind of the Primavera Unifier application for automating project management processes is related to errors in the code. Exploiting this vulnerability may allow a malicious actor to execute arbitrary code or cause service failures using the HTTP...

8.1CVSS7.9AI score0.08872EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/18 12:0 a.m.88 views

Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2019 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.x prior to 16.2.15.6 or 17.x prior to 17.12.9.2 or 18.x prior to 18.8.4.1. It is, therefore, affected by multiple vulnerabilities: - An arbitrary file upload vulnerabili...

10CVSS8.7AI score0.97107EPSS
Exploits15References6
Tenable Nessus
Tenable Nessus
added 2018/11/01 12:0 a.m.32 views

Oracle Primavera Unifier Multiple Vulnerabilities (Oct 2018 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 15.x, 16.x prior to 16.2.15.4, 17.x prior to 17.12.8.2, or 18.x prior to 18.8.2.2. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested f...

7.5CVSS7.5AI score0.08872EPSS
Exploits0References3
Symantec
Symantec
added 2018/10/24 12:0 a.m.19 views

FasterXML Jackson-databind Polymorphic Deserialization Multiple Security Vulnerability

Description FasterXML Jackson-databind is prone to multiple security vulnerabilities. Successfully exploiting these issues may allow an attacker to execute arbitrary code, bypass certain security restrictions, perform unauthorized actions or obtain potentially sensitive information. Failed exploi...

0.4AI score
Exploits0References2Affected Software15
OSV
OSV
added 2018/10/17 1:31 a.m.3 views

CVE-2018-3148

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Web Access. Supported versions that are affected are 15.1, 15.2, 16.1, 16.2, 17.1-17.12 and 18.1-18.8. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

6.1CVSS7.3AI score0.01131EPSS
Exploits0References2
NVD
NVD
added 2018/10/17 1:31 a.m.23 views

CVE-2018-3148

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Web Access. Supported versions that are affected are 15.1, 15.2, 16.1, 16.2, 17.1-17.12 and 18.1-18.8. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

6.1CVSS5.3AI score0.01131EPSS
Exploits0References2
Prion
Prion
added 2018/10/17 1:31 a.m.22 views

Code injection

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Web Access. Supported versions that are affected are 15.1, 15.2, 16.1, 16.2, 17.1-17.12 and 18.1-18.8. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

5.8CVSS5.6AI score0.01131EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/10/17 1:0 a.m.61 views

CVE-2018-3148

CVE-2018-3148 affects Oracle Primavera Unifier (Web Access subcomponent). Affected versions: 15.1, 15.2, 16.1, 16.2, 17.1–17.12 and 18.1–18.8. The vulnerability is exploitable by an unauthenticated attacker over HTTP with network access; successful exploitation may require user interaction. Impac...

6.1CVSS5.6AI score0.01131EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2018/10/17 1:0 a.m.11 views

CVE-2018-3148

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Web Access. Supported versions that are affected are 15.1, 15.2, 16.1, 16.2, 17.1-17.12 and 18.1-18.8. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

6.1AI score0.01131EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/10/17 1:0 a.m.25 views

CVE-2018-3148

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Web Access. Supported versions that are affected are 15.1, 15.2, 16.1, 16.2, 17.1-17.12 and 18.1-18.8. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

5.7AI score0.01131EPSS
Exploits0References2
CNVD
CNVD
added 2018/10/17 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Primavera Unifier (CNVD-2018-24255)

Oracle Construction and Engineering Suite is Oracle's suite of combined management solutions for construction projects, of which Primavera Unifier is a complete project lifecycle management solution component. A security vulnerability exists in the Web Access subcomponent of the Primavera Unifier...

6.1CVSS6.4AI score0.01131EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/08/14 12:0 a.m.6 views

The vulnerability of the Core component of the Primavera Unifier application, which allows a hacker to gain unauthorized access to protected data.

The vulnerability of the Core component of the Primavera Unifier application, which is used for automating project management processes, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protecte...

7.4CVSS7.4AI score0.01188EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/20 12:0 a.m.68 views

Oracle Primavera Unifier Multiple Vulnerabilities (July 2018 CPU)

According to its self-reported version number, the Oracle Primavera Unifier installation running on the remote web server is 16.x prior to 16.2.15.0, 17.x prior to 17.12.7.0, or 18.x prior to 18.7.0.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for the...

7.8CVSS6.3AI score0.2258EPSS
Exploits2References8
Rows per page
Query Builder