NVD

Vulnerability Change Records for CVE-2020-2707

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 15.1.0.0 up to (including) 15.2.18.7 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 16.1.0.0 up to (including) 16.2.19.0 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 17.1.0.0 up to (including) 17.2.16.0 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 18.1.0.0 up to (including) 18.8.16.0 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.0.0:::::::
Added	CVSS V2		NIST (AV:N/AC:M/Au:S/C:P/I:P/A:N)
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V3.1		NIST AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Added	CWE		NIST NVD-CWE-noinfo
Changed	Reference Type	https://www.oracle.com/security-alerts/cpujan2020.html No Types Assigned	https://www.oracle.com/security-alerts/cpujan2020.html Patch, Vendor Advisory