CVE-2017-10046

MEDIUM

Oracle Primavera P6 <16.1 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-10046. PoCs published by Marios Nicolaides.

AI-analyzed exploit summary This is a detailed writeup describing an HTTP Response Splitting vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management. The exploit involves injecting line feed characters via the languageCode parameter to manipulate HTTP response headers and execute arbitrary JavaScript.

Description

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle Primavera Products Suite (subcomponent: Web Access). Supported versions that are affected are 8.3, 8.4, 15.1, 15.2 and 16.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Primavera P6 Enterprise Project Portfolio Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Primavera P6 Enterprise Project Portfolio Management, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Primavera P6 Enterprise Project Portfolio Management accessible data as well as unauthorized read access to a subset of Primavera P6 Enterprise Project Portfolio Management accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N).

Exploits (1)

exploitdb WRITEUP VERIFIED

by Marios Nicolaides · textwebappsmultiple

https://www.exploit-db.com/exploits/44141

View Code ZIP pw:eip

This is a detailed writeup describing an HTTP Response Splitting vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management. The exploit involves injecting line feed characters via the languageCode parameter to manipulate HTTP response headers and execute arbitrary JavaScript.

Classification

Writeup 100%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Oracle Primavera P6 Enterprise Project Portfolio Management 8.3, 8.4, 15.1, 15.2, 16.1

No auth needed

Prerequisites: Access to the target application URL · Victim interaction to click a crafted link

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1038946

Patch, Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/44141/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/99770

Scores

CVSS v3 5.4

EPSS 0.0392

EPSS Percentile 89.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-269

Status published

Products (10)

oracle/primavera_p6_enterprise_project_portfolio_management 8.3

oracle/primavera_p6_enterprise_project_portfolio_management 8.4

oracle/primavera_p6_enterprise_project_portfolio_management 15.1

oracle/primavera_p6_enterprise_project_portfolio_management 15.2

oracle/primavera_p6_enterprise_project_portfolio_management 16.1

Oracle Corporation/Primavera P6 Enterprise Project Portfolio Management 15.1

Oracle Corporation/Primavera P6 Enterprise Project Portfolio Management 15.2

Oracle Corporation/Primavera P6 Enterprise Project Portfolio Management 16.1

Oracle Corporation/Primavera P6 Enterprise Project Portfolio Management 8.3

Oracle Corporation/Primavera P6 Enterprise Project Portfolio Management 8.4

Published Aug 08, 2017

Tracked Since Feb 18, 2026