Primavera Unifier 21.12 released

Oracle has released much awaited Unifier 21.12 version on 21st Dec for its on-premise customers. The 21 series has major change to User Interface experience, giving a new look and feel to product. Also it brings it closer to other Primavera products from UI/UX point of view.

Detailed list of what’s new in this version can be found at this link

Primavera CVE-2021-44228 and CVE-2021-45046 Apache Log4j Security Alert


Apache Log4j is most common logging library being used by applications written in Java. CVE-2021-44228 vulnerability is classified as severe and allows unauthenticated remote code execution access to the applications which are using this library.Oracle has released security alert advisory for this and listed out impacted application in its document 2827611.1

As per Oracle document following Primavera products are impacted
Primavera Gateway
version 17.12.0.0 – 17.12.11.0
version 18.8.0.0 – 18.8.13.0
version 19.12.0.0 – 19.12.12.0
version 20.12.0.0 – 20.12.7.1
Primavera P6 Enterprise Project Portfolio Management
version 19.12 – 19.12.17.0
version 20.12 – 20.12.9.0
Primavera P6 Professional Project Management
version 19.12 – 19.12.17.0
version 20.12 – 20.12.9.0
Primavera Unifier
version 18.8.0.0 – 18.8.18.0
version 19.12.0.0 – 19.12.16.0
version 20.12.0.0 – 20.12.11.0
Primavera Analytics
version 18.8.0.0 – 18.8.13.0
version 19.12.0.0 – 19.12.12.0
version 20.12.0.0 – 20.12.9.0

If you are using any of above version please ensure to follow Oracle documents and apply the workaround and as soon as patch set is available apply that to secure your applications.