Oracle

Primavera P6 Enterprise Project Portfolio Management

63 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-50061

  • EPSS 0.03%
  • Veröffentlicht 15.07.2025 19:27:34
  • Zuletzt bearbeitet 24.07.2025 20:57:41

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 20.12.0-20.12.21, 21.12.0-21.12.21, 22.12.0-22.12.19, 23.12.0-...

5.4

CVE-2025-21558

  • EPSS 0.04%
  • Veröffentlicht 21.01.2025 21:15:22
  • Zuletzt bearbeitet 18.06.2025 19:24:33

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0 and 22.12.1.0. Eas...

4.3

CVE-2025-21528

  • EPSS 0.02%
  • Veröffentlicht 21.01.2025 21:15:18
  • Zuletzt bearbeitet 18.06.2025 19:19:45

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0, 22.12.1.0-22.12.16...

5.4

CVE-2025-21526

  • EPSS 0.02%
  • Veröffentlicht 21.01.2025 21:15:18
  • Zuletzt bearbeitet 18.06.2025 19:16:40

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 20.12.1.0-20.12.21.5, 21.12.1.0-21.12.20.0, 22.12.1.0-22.12.16...

8.2

CVE-2024-21095

  • EPSS 0.29%
  • Veröffentlicht 16.04.2024 22:15:30
  • Zuletzt bearbeitet 18.06.2025 20:13:12

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 19.12.0-19.12.22, 20.12.0-20.12.21, 21.12.0-21.12.18, 22.12.0-...

7.5

CVE-2020-36518

Exploit
  • EPSS 0.6%
  • Veröffentlicht 11.03.2022 07:15:07
  • Zuletzt bearbeitet 27.08.2025 21:15:36

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

8.5

CVE-2021-44832

Warnung
  • EPSS 53.59%
  • Veröffentlicht 28.12.2021 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:31:34

Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has ...

5.9

CVE-2021-45105

Warnung
  • EPSS 65.66%
  • Veröffentlicht 18.12.2021 12:15:07
  • Zuletzt bearbeitet 21.11.2024 06:31:58

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service wh...

4

CVE-2021-2386

  • EPSS 0.16%
  • Veröffentlicht 21.07.2021 15:15:39
  • Zuletzt bearbeitet 21.11.2024 06:03:01

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 20.12.0-20.12.3. Easily exploitable vulnerability allows low pr...

5.5

CVE-2021-2366

  • EPSS 0.18%
  • Veröffentlicht 21.07.2021 15:15:29
  • Zuletzt bearbeitet 21.11.2024 06:02:58

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 17.12.0-17.12.20, 18.8.0-18.8.23, 19.12.0-19.12.14 and 20.12.0-...