OR
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 16.2.0.0 up to (including) 16.2.19.3
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 17.12.0.0 up to (including) 17.12.17.0
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 18.8.0.0 up to (including) 18.8.18.0
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 19.12.1.0 up to (including) 19.12.3.0
     *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 20.1.0.0 up to (including) 20.2.0.0

NIST (AV:N/AC:M/Au:S/C:P/I:P/A:P)

Victim must voluntarily interact with attack mechanism

NIST AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

NIST NVD-CWE-noinfo

https://www.oracle.com/security-alerts/cpuapr2020.html No Types Assigned

https://www.oracle.com/security-alerts/cpuapr2020.html Vendor Advisory