ID CVE-2010-4434
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:33:00
Description
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.0 through 8.50.14 and 8.51.0 through 8.51.04 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal.
{"id": "CVE-2010-4434", "bulletinFamily": "NVD", "title": "CVE-2010-4434", "description": "Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.0 through 8.50.14 and 8.51.0 through 8.51.04 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal.", "published": "2011-01-19T17:00:00", "modified": "2017-08-17T01:33:00", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4434", "reporter": "cve@mitre.org", "references": ["http://www.securityfocus.com/bid/45899", "http://www.securitytracker.com/id?1024978", "http://osvdb.org/70568", "http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/64788", "http://www.vupen.com/english/advisories/2011/0147", "http://secunia.com/advisories/42924"], "cvelist": ["CVE-2010-4434"], "type": "cve", "lastseen": "2020-10-03T11:57:31", "edition": 3, "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:11380"]}, {"type": "oracle", "idList": ["ORACLE:CPUJAN2011-194091"]}], "modified": "2020-10-03T11:57:31", "rev": 2}, "score": {"value": 3.7, "vector": "NONE", "modified": "2020-10-03T11:57:31", "rev": 2}, "vulnersScore": 3.7}, "cpe": ["cpe:/a:oracle:peoplesoft_enterprise:8.51.0", "cpe:/a:oracle:peoplesoft_enterprise:8.50.0", "cpe:/a:oracle:peoplesoft_enterprise:8.51.04", "cpe:/a:oracle:peoplesoft_enterprise:8.50.14", "cpe:/a:oracle:peoplesoft_and_jdedwards_product_suite:8.50.0", "cpe:/a:oracle:peoplesoft_and_jdedwards_product_suite:8.51.04", "cpe:/a:oracle:peoplesoft_and_jdedwards_product_suite:8.51.0", "cpe:/a:oracle:peoplesoft_and_jdedwards_product_suite:8.50.14"], "affectedSoftware": [{"cpeName": "oracle:peoplesoft_enterprise", "name": "oracle peoplesoft enterprise", "operator": "eq", "version": "8.51.04"}, {"cpeName": "oracle:peoplesoft_and_jdedwards_product_suite", "name": "oracle peoplesoft and jdedwards product suite", "operator": "eq", "version": "8.51.04"}, {"cpeName": "oracle:peoplesoft_and_jdedwards_product_suite", "name": "oracle peoplesoft and jdedwards product suite", "operator": "eq", "version": "8.51.0"}, {"cpeName": "oracle:peoplesoft_enterprise", "name": "oracle peoplesoft enterprise", "operator": "eq", "version": "8.50.0"}, {"cpeName": "oracle:peoplesoft_enterprise", "name": "oracle peoplesoft enterprise", "operator": "eq", "version": "8.51.0"}, {"cpeName": "oracle:peoplesoft_and_jdedwards_product_suite", "name": "oracle peoplesoft and jdedwards product suite", "operator": "eq", "version": "8.50.0"}, {"cpeName": "oracle:peoplesoft_and_jdedwards_product_suite", "name": "oracle peoplesoft and jdedwards product suite", "operator": "eq", "version": "8.50.14"}, {"cpeName": "oracle:peoplesoft_enterprise", "name": "oracle peoplesoft enterprise", "operator": "eq", "version": "8.50.14"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:oracle:peoplesoft_enterprise:8.50.14:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_enterprise:8.51.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.51.04:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.50.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.51.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_enterprise:8.50.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_enterprise:8.51.04:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.50.14:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise:8.50.14:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.50.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise:8.50.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise:8.51.04:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.50.14:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.51.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.51.04:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise:8.51.0:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}}
{"securityvulns": [{"lastseen": "2018-08-31T11:09:40", "bulletinFamily": "software", "cvelist": ["CVE-2010-3598", "CVE-2010-4428", "CVE-2010-4459", "CVE-2010-4445", "CVE-2010-4416", "CVE-2010-4429", "CVE-2010-3505", "CVE-2010-4420", "CVE-2010-4458", "CVE-2010-2632", "CVE-2010-1227", "CVE-2010-4439", "CVE-2010-4444", "CVE-2010-3599", "CVE-2010-3594", "CVE-2010-4425", "CVE-2010-3589", "CVE-2010-4433", "CVE-2010-3593", "CVE-2010-4426", "CVE-2010-4453", "CVE-2010-4436", "CVE-2010-2935", "CVE-2010-3597", "CVE-2010-4427", "CVE-2010-3592", "CVE-2010-4423", "CVE-2010-3574", "CVE-2010-4441", "CVE-2010-4461", "CVE-2010-4419", "CVE-2010-4435", "CVE-2010-3600", "CVE-2010-4431", "CVE-2010-4455", "CVE-2009-4269", "CVE-2009-3555", "CVE-2010-4457", "CVE-2010-4417", "CVE-2010-3590", "CVE-2010-4442", "CVE-2010-4464", "CVE-2010-4456", "CVE-2010-4443", "CVE-2010-4414", "CVE-2010-3595", "CVE-2010-4413", "CVE-2010-4415", "CVE-2010-4418", "CVE-2010-4434", "CVE-2010-4421", "CVE-2010-2936", "CVE-2010-4430", "CVE-2010-4437", "CVE-2010-3588", "CVE-2010-3510", "CVE-2010-4424", "CVE-2010-4449", "CVE-2010-3586", "CVE-2010-3591", "CVE-2010-4446", "CVE-2010-4432", "CVE-2010-3587", "CVE-2010-4460", "CVE-2010-4438", "CVE-2010-4440"], "description": "Quarterly security update closes nearly 70 different vulnerabilities in all applications.", "edition": 1, "modified": "2011-02-26T00:00:00", "published": "2011-02-26T00:00:00", "id": "SECURITYVULNS:VULN:11380", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11380", "title": "Oracle / Sun / Peoplesoft / Open Office applications multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oracle": [{"lastseen": "2019-05-29T18:21:13", "bulletinFamily": "software", "cvelist": ["CVE-2010-3598", "CVE-2010-3562", "CVE-2010-4428", "CVE-2010-4459", "CVE-2010-4445", "CVE-2010-4416", "CVE-2010-3557", "CVE-2010-4429", "CVE-2010-3505", "CVE-2010-4420", "CVE-2010-3551", "CVE-2010-4458", "CVE-2010-3553", "CVE-2010-2632", "CVE-2010-1227", "CVE-2010-3566", "CVE-2010-4439", "CVE-2010-4444", "CVE-2010-3565", "CVE-2010-3599", "CVE-2010-3594", "CVE-2010-4425", "CVE-2010-3589", "CVE-2010-3572", "CVE-2010-4433", "CVE-2010-3593", "CVE-2010-4426", "CVE-2010-4453", "CVE-2010-4436", "CVE-2010-2935", "CVE-2010-3597", "CVE-2010-4427", "CVE-2010-3592", "CVE-2010-4423", "CVE-2010-3574", "CVE-2010-4441", "CVE-2010-4461", "CVE-2010-4419", "CVE-2010-4435", "CVE-2010-3600", "CVE-2010-3541", "CVE-2010-4431", "CVE-2010-4455", "CVE-2009-4269", "CVE-2010-3571", "CVE-2009-3555", "CVE-2010-4457", "CVE-2010-4417", "CVE-2010-3590", "CVE-2010-4442", "CVE-2010-4464", "CVE-2010-3559", "CVE-2010-1321", "CVE-2010-4456", "CVE-2010-3556", "CVE-2010-4443", "CVE-2010-4414", "CVE-2010-3561", "CVE-2010-3595", "CVE-2010-3549", "CVE-2010-4413", "CVE-2010-3554", "CVE-2010-4415", "CVE-2010-4418", "CVE-2010-4434", "CVE-2010-4421", "CVE-2010-2936", "CVE-2010-3555", "CVE-2010-4430", "CVE-2010-4437", "CVE-2010-3588", "CVE-2010-3510", "CVE-2010-4424", "CVE-2010-4449", "CVE-2010-3567", "CVE-2010-3573", "CVE-2010-3586", "CVE-2010-3591", "CVE-2010-3548", "CVE-2010-4446", "CVE-2010-4432", "CVE-2010-3568", "CVE-2010-3587", "CVE-2010-4460", "CVE-2010-4438", "CVE-2010-4440", "CVE-2010-3569"], "description": "A Critical Patch Update is a collection of patches for multiple security vulnerabilities. It also includes non-security fixes that are required (because of interdependencies) by those security patches. Critical Patch Updates are cumulative, except as noted below, but each advisory describes only the security fixes added since the previous Critical Patch Update. Thus, prior Critical Patch Update Advisories should be reviewed for information regarding earlier accumulated security fixes. Please refer to:\n\n[Critical Patch Updates and Security Alerts](<http://www.oracle.com/technetwork/topics/security/alerts-086861.html>) for information about Oracle Security Advisories.\n\n**Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply CPU fixes as soon as possible.** This Critical Patch Update contains 66 new security fixes across all product families listed below.\n", "modified": "2011-02-01T00:00:00", "published": "2011-01-18T00:00:00", "id": "ORACLE:CPUJAN2011-194091", "href": "", "type": "oracle", "title": "Oracle Critical Patch Update - January 2011", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}]}