CVE-2021-2386 – Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracl …

21 July 2021

Vuln ID: CVE-2021-2386

Published: 2021-07-21 15:15:39Z

Description: Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 20.12.0-20.12.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Primavera P6 Enterprise Project Portfolio Management. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Primavera P6 Enterprise Project Portfolio Management accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).

Source: NVD.NIST.GOV

Date:

21 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Spyroid RAT Attacking Android Users to Steal Confidential Data24 April 2024
Cybersecurity Trends and Predictions for 202424 April 2024
Zero Networks unveils identity segmentation solution to prevent credential theft24 April 2024
New Ionix service integrates cloud and on-premises security for broader risk management24 April 2024
TikTok comes one step closer to a US ban24 April 2024