Lucene search

K
OraclePrimavera Unifier

5 matches found

CVE
CVE
added 2017/03/15 4:59 p.m.772 views

CVE-2016-7103

Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.

6.1CVSS6AI score0.01397EPSS
CVE
CVE
added 2017/01/23 9:59 p.m.191 views

CVE-2016-4055

The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."

7.8CVSS6.5AI score0.03453EPSS
CVE
CVE
added 2017/08/08 3:29 p.m.43 views

CVE-2017-10150

Vulnerability in the Primavera Unifier component of Oracle Primavera Products Suite (subcomponent: Platform). Supported versions that are affected are 9.13, 9.14, 10.1, 10.2, 15.1, 15.2, 16.1 and 16.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to c...

4.3CVSS3.8AI score0.00405EPSS
CVE
CVE
added 2017/04/24 7:59 p.m.42 views

CVE-2017-3501

Vulnerability in the Primavera Unifier component of Oracle Primavera Products Suite (subcomponent: Platform). Supported versions that are affected are 9.13, 9.14, 10.0, 10.1, 15.1 and 15.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.1CVSS5.5AI score0.00501EPSS
CVE
CVE
added 2017/08/08 3:29 p.m.38 views

CVE-2017-10149

Vulnerability in the Primavera Unifier component of Oracle Primavera Products Suite (subcomponent: Platform). Supported versions that are affected are 9.13, 9.14, 10.1, 10.2, 15.1, 15.2, 16.1 and 16.2. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to ...

4.9CVSS4.3AI score0.00221EPSS