CVE-2016-3567

MEDIUM

Oracle Primavera <16.1 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Web access.

References (4)

[Patch, Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91787

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1036393

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91862

Scores

CVSS v3 5.4

EPSS 0.0024

EPSS Percentile 47.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Classification

Status draft

Affected Products (5)

oracle/primavera_p6_enterprise_project_portfolio_management

Timeline

Published Jul 21, 2016

Tracked Since Feb 18, 2026