CVE-2008-4002

2008-10-1421:11:11

[email protected]

web.nvd.nist.gov

cve-2008-4002

oracle

peoplesoft

jd edwards

enterpriseone

vulnerability

nvd

confidentiality

remote authenticated users

5.5 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

56.2%

JSON

Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote authenticated users to affect confidentiality via unknown vectors.

Affected configurations

NVD

Node

oraclejd_edwards_enterpriseoneMatch8.48.18

oraclejd_edwards_enterpriseoneMatch8.49.14

oraclepeoplesoft_enterpriseMatch8.48.18

oraclepeoplesoft_enterpriseMatch8.49.14

CPENameOperatorVersion
oracle:jd_edwards_enterpriseoneoracle jd edwards enterpriseoneeq8.48.18
oracle:jd_edwards_enterpriseoneoracle jd edwards enterpriseoneeq8.49.14
oracle:peoplesoft_enterpriseoracle peoplesoft enterpriseeq8.48.18
oracle:peoplesoft_enterpriseoracle peoplesoft enterpriseeq8.49.14

CPE	Name	Operator	Version
oracle:jd_edwards_enterpriseone	oracle jd edwards enterpriseone	eq	8.48.18
oracle:jd_edwards_enterpriseone	oracle jd edwards enterpriseone	eq	8.49.14
oracle:peoplesoft_enterprise	oracle peoplesoft enterprise	eq	8.48.18
oracle:peoplesoft_enterprise	oracle peoplesoft enterprise	eq	8.49.14