Primavera Portfolio Management Security Vulnerabilities and Issues — Primavera Portfolio Management CVE List

Lucene search

OraclePrimavera Portfolio Management

14 matches found

CVE•added 2019/11/08 3:15 p.m.•230 views

CVE-2019-10219

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

6.5CVSS6AI score0.01864EPSS

CVE•added 2022/01/19 12:15 p.m.•110 views

CVE-2022-21377

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web API). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2 and 20.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

5.8CVSS5.1AI score0.00567EPSS

CVE•added 2022/01/19 12:15 p.m.•74 views

CVE-2022-21281

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows high privileged attacker with net...

4.9CVSS4.6AI score0.0019EPSS

CVE•added 2022/01/19 12:15 p.m.•70 views

CVE-2022-21244

4.3CVSS3.9AI score0.00694EPSS

CVE•added 2022/01/19 12:15 p.m.•62 views

CVE-2022-21242

5.4CVSS5.2AI score0.00185EPSS

CVE•added 2022/01/19 12:15 p.m.•60 views

CVE-2022-21243

4.3CVSS4.2AI score0.00314EPSS

CVE•added 2022/01/19 12:15 p.m.•53 views

CVE-2022-21269

6.1CVSS5.8AI score0.00567EPSS

CVE•added 2022/01/19 12:15 p.m.•44 views

CVE-2022-21376

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2 and 20.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

5.8CVSS5.1AI score0.00567EPSS

CVE•added 2020/07/15 6:15 p.m.•39 views

CVE-2020-2562

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Investor Module). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network ...

6.1CVSS5.8AI score0.00852EPSS

CVE•added 2020/07/15 6:15 p.m.•34 views

CVE-2020-14528

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

6.1CVSS5.8AI score0.00567EPSS

CVE•added 2020/07/15 6:15 p.m.•30 views

CVE-2020-14527

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network acc...

5.9CVSS6AI score0.01741EPSS

CVE•added 2020/07/15 6:15 p.m.•30 views

CVE-2020-14529

5.4CVSS5.2AI score0.00185EPSS

CVE•added 2020/07/15 6:15 p.m.•30 views

CVE-2020-14549

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Server). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0 and 19.0.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network acc...

5.9CVSS5.9AI score0.01741EPSS

CVE•added 2020/07/15 6:15 p.m.•30 views

CVE-2020-14566

4.3CVSS3.9AI score0.00694EPSS