National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2018-2961

Change History

Initial Analysis - 7/23/2018 1:24:37 PM

Action Type Old Value New Value
Changed Reference Type
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html No Types Assigned
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html Patch, Vendor Advisory
Added CWE
CWE-284
Added CVSS V2
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Added CVSS V2 Metadata
Victim must voluntarily interact with attack mechanism
Added CVSS V3
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Added CPE Configuration
OR
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:8.4:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:15.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:15.2:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:16.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:16.2:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 17.1 up to (including) 17.12