Lucene search

K
OraclePrimavera Portfolio Management

14 matches found

CVE
CVE
added 2019/11/08 3:15 p.m.230 views

CVE-2019-10219

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

6.5CVSS6AI score0.01915EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.110 views

CVE-2022-21377

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web API). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2 and 20.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

5.8CVSS5.1AI score0.00567EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.74 views

CVE-2022-21281

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows high privileged attacker with net...

4.9CVSS4.6AI score0.0019EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.70 views

CVE-2022-21244

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows unauthenticated attacker with net...

4.3CVSS3.9AI score0.00694EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.62 views

CVE-2022-21242

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows low privileged attacker with netw...

5.4CVSS5.2AI score0.00185EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.60 views

CVE-2022-21243

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows low privileged attacker with netw...

4.3CVSS4.2AI score0.00314EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.53 views

CVE-2022-21269

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows unauthenticated attacker with net...

6.1CVSS5.8AI score0.00567EPSS
CVE
CVE
added 2022/01/19 12:15 p.m.44 views

CVE-2022-21376

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2 and 20.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

5.8CVSS5.1AI score0.00567EPSS
CVE
CVE
added 2020/07/15 6:15 p.m.39 views

CVE-2020-2562

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Investor Module). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network ...

6.1CVSS5.8AI score0.00852EPSS
CVE
CVE
added 2020/07/15 6:15 p.m.34 views

CVE-2020-14528

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

6.1CVSS5.8AI score0.00567EPSS
CVE
CVE
added 2020/07/15 6:15 p.m.30 views

CVE-2020-14527

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network acc...

5.9CVSS6AI score0.01741EPSS
CVE
CVE
added 2020/07/15 6:15 p.m.30 views

CVE-2020-14529

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Investor Module). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network a...

5.4CVSS5.2AI score0.00185EPSS
CVE
CVE
added 2020/07/15 6:15 p.m.30 views

CVE-2020-14549

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Server). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network acc...

5.9CVSS5.9AI score0.01741EPSS
CVE
CVE
added 2020/07/15 6:15 p.m.30 views

CVE-2020-14566

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

4.3CVSS3.9AI score0.00694EPSS