Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-3566

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect confidentiality and integrity via vectors related to Web access, a different vulnerability than CVE-2016-3568, CVE-2016-3569, CVE-2016-3570, CVE-2016-3571, and CVE-2016-3573.

Published

2016-07-21T10:14:03.017

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 6.1 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: NONE
Exploitability Score

8.6

Impact Score

4.9

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application oracle primavera_p6_enterprise_project_portfolio_management 8.3 Yes
Application oracle primavera_p6_enterprise_project_portfolio_management 8.4 Yes
Application oracle primavera_p6_enterprise_project_portfolio_management 15.1 Yes
Application oracle primavera_p6_enterprise_project_portfolio_management 15.2 Yes
Application oracle primavera_p6_enterprise_project_portfolio_management 16.1 Yes
References