cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-21888,https://securityvulnerability.io/vulnerability/CVE-2023-21888,Vulnerability in Primavera Gateway of Oracle Construction and Engineering,"A vulnerability in the Primavera Gateway product from Oracle’s Construction and Engineering division could allow low-privileged attackers with network access to exploit the system via HTTP. The issue affects specific versions of the software and requires human interaction to initiate a successful attack. If exploited, the vulnerability may enable unauthorized updates, deletions, and reading of accessible data, thus compromising the integrity and confidentiality of Primavera Gateway data. Attackers might also gain the potential to affect additional connected products.",Oracle,Primavera Gateway,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2023-01-18T00:15:00.000Z,0
CVE-2017-3500,https://securityvulnerability.io/vulnerability/CVE-2017-3500,,"Vulnerability in the Primavera Gateway component of Oracle Primavera Products Suite (subcomponent: Primavera Desktop Integration). Supported versions that are affected are 1.0, 1.1, 14.2, 15.1, 15.2, 16.1 and 16.2. Easily ""exploitable"" vulnerability allows high privileged attacker with network access via HTTP to compromise Primavera Gateway. While the vulnerability is in Primavera Gateway, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Primavera Gateway accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Primavera Gateway. CVSS 3.0 Base Score 8.7 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:H).",Oracle,Primavera Gateway,8.7,HIGH,0.0009800000116229057,false,,false,false,false,,,false,false,,2017-04-24T19:00:00.000Z,0
CVE-2017-3508,https://securityvulnerability.io/vulnerability/CVE-2017-3508,,"Vulnerability in the Primavera Gateway component of Oracle Primavera Products Suite (subcomponent: Primavera Desktop Integration). Supported versions that are affected are 1.0, 1.1, 14.2, 15.1, 15.2, 16.1 and 16.2. Easily ""exploitable"" vulnerability allows high privileged attacker with network access via HTTP to compromise Primavera Gateway. While the vulnerability is in Primavera Gateway, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Primavera Gateway. CVSS 3.0 Base Score 9.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).",Oracle,Primavera Gateway,9.1,CRITICAL,0.0025599999353289604,false,,false,false,false,,,false,false,,2017-04-24T19:00:00.000Z,0