NVD

Vulnerability Change Records for CVE-2020-2556

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 16.2.0.0 up to (including) 16.2.19.0 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 17.12.0.0 up to (including) 17.12.16.0 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management::::::::* versions from (including) 18.8.0.0 up to (including) 18.8.16.0 cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.0.0::::::: cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.1.0.0:::::::
Added	CVSS V2		NIST (AV:L/AC:M/Au:N/C:P/I:P/A:P)
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V3.1		NIST AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:L
Added	CWE		NIST NVD-CWE-noinfo
Changed	Reference Type	https://www.oracle.com/security-alerts/cpujan2020.html No Types Assigned	https://www.oracle.com/security-alerts/cpujan2020.html Patch, Vendor Advisory