Total
319 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2016-5529 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-07-28 | 5.8 MEDIUM | 6.1 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to Integration Broker, a different vulnerability than CVE-2016-5530 and CVE-2016-8293. | |||||
CVE-2016-8294 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-07-28 | 4.0 MEDIUM | 4.3 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
CVE-2016-8293 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-07-28 | 5.8 MEDIUM | 8.2 HIGH |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to Integration Broker, a different vulnerability than CVE-2016-5529 and CVE-2016-5530. | |||||
CVE-2016-8296 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-07-28 | 4.9 MEDIUM | 7.6 HIGH |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to LDAP. | |||||
CVE-2007-3854 | 1 Oracle | 9 Apex, Application Server, Collaboration Suite and 6 more | 2017-07-28 | 5.5 MEDIUM | N/A |
Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 allow remote authenticated users to have unknown impact via (1) SYS.DBMS_PRVTAQIS in the Advanced Queuing component (DB02) and (2) MDSYS.MD in the Spatial component (DB12). NOTE: Oracle has not disputed reliable researcher claims that DB02 is for SQL injection and DB12 is for a buffer overflow. | |||||
CVE-2017-3527 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-07-10 | 5.0 MEDIUM | 5.3 MEDIUM |
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Fluid Core). Supported versions that are affected are 8.54 and 8.55. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized read access to a subset of PeopleSoft Enterprise PeopleTools accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N). | |||||
CVE-2017-3292 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-02-10 | 3.5 LOW | 5.7 MEDIUM |
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Integration Broker). Supported versions that are affected are 8.54 and 8.55. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all PeopleSoft Enterprise PeopleTools accessible data. CVSS v3.0 Base Score 5.7 (Confidentiality impacts). | |||||
CVE-2016-8329 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-02-10 | 5.8 MEDIUM | 6.1 MEDIUM |
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Mobile Application Platform). Supported versions that are affected are 8.54 and 8.55. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in PeopleSoft Enterprise PeopleTools, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise PeopleTools accessible data as well as unauthorized read access to a subset of PeopleSoft Enterprise PeopleTools accessible data. CVSS v3.0 Base Score 6.1 (Confidentiality and Integrity impacts). | |||||
CVE-2016-3442 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 4.3 MEDIUM | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Portal. | |||||
CVE-2016-3435 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 4.3 MEDIUM | 4.7 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect availability via vectors related to PIA Core Technology. | |||||
CVE-2016-3421 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 6.5 MEDIUM | 7.4 HIGH |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Activity Guide. | |||||
CVE-2016-3417 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 4.3 MEDIUM | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to PIA Search Functionality. | |||||
CVE-2016-3423 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 3.5 LOW | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-0698. | |||||
CVE-2016-0679 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 5.5 MEDIUM | 8.7 HIGH |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect integrity and availability via vectors related to PIA Grids. | |||||
CVE-2016-0685 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 5.5 MEDIUM | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to File Processing. | |||||
CVE-2016-0698 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 4.3 MEDIUM | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-3423. | |||||
CVE-2016-0683 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 4.0 MEDIUM | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Search Framework. | |||||
CVE-2016-0408 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2016-12-02 | 4.3 MEDIUM | 5.4 MEDIUM |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53 through 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to the Activity Guide sub-component. | |||||
CVE-2011-2274 | 1 Oracle | 2 Peoplesoft Enterprise Peopletools, Peoplesoft Products | 2016-11-23 | 3.5 LOW | N/A |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.49.31, 8.50.20, and 8.51.11 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2011-2280. | |||||
CVE-2011-2280 | 1 Oracle | 2 Peoplesoft Enterprise Peopletools, Peoplesoft Products | 2016-11-23 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.49.31, 8.50.20, and 8.51.11 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2011-2274. |