21Oca
CVE-2025-21528 | Oracle Primavera P6 Enterprise Project Portfolio Management Web Access improper authentication
A vulnerability has been found in Oracle Primavera P6 Enterprise Project Portfolio Management up to 20.12.21.5/21.12.20.0/22.12.16.0/23.12.10.0 and classified as critical. This vulnerability affects unknown code of the component Web Access. The manipulation leads to improper authentication. This vulnerability was named CVE-2025-21528. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.