CVE-2016-5533

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.4, 15.x, and 16.x allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

Published: Oct 25, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-5533
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.4
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CVSS v2:

Severity: Medium
Score: 5.5
AV:N/AC:L/Au:S/C:P/I:P/A:N

CWEs:

CWE-284

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
oracle / primavera_p6_enterprise_project_portfolio_management	16.2	16.2.x
oracle / primavera_p6_enterprise_project_portfolio_management	15.1	15.1.x
oracle / primavera_p6_enterprise_project_portfolio_management	15.0	15.0.x
oracle / primavera_p6_enterprise_project_portfolio_management	16.1	16.1.x
oracle / primavera_p6_enterprise_project_portfolio_management	16.0	16.0.x
oracle / primavera_p6_enterprise_project_portfolio_management	15.2	15.2.x
oracle / primavera_p6_enterprise_project_portfolio_management	8.4	8.4.x

Vulnerability Database

289,599

CVE-2016-5533