CVE-2020-25020 in Primavera Unifierinfo

Summary

MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

08/29/2020

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
168178Oracle Primavera Unifier MPXJ xml external entity reference611Not definedOfficial fixCVE-2020-25020
160433MPXJ GanttProjectReader/PhoenixReader xml external entity reference611Not definedNot definedCVE-2020-25020

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!