CVE-2011-2278

2011-07-2100:55:01

[email protected]

web.nvd.nist.gov

cve-2011-2278

oracle

peoplesoft

enterprise

hrms

confidentiality

remote

authenticated

vulnerability

nvd

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.2%

JSON

Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 8.9, Bundle, #24, 9.0, Bundle, #17, 9.1, Bundle, and #6 allows remote authenticated users to affect confidentiality via unknown vectors related to Talent Acquisition Manager.

Affected configurations

NVD

Node

oraclepeoplesoft_enterprise_hrmsMatch8.9bundle24

oraclepeoplesoft_enterprise_hrmsMatch9.0bundle17

oraclepeoplesoft_enterprise_hrmsMatch9.1bundle6

oraclepeoplesoft_productsMatch8.9bundle24

oraclepeoplesoft_productsMatch9.0bundle17

oraclepeoplesoft_productsMatch9.1bundle6

CPENameOperatorVersion
oracle:peoplesoft_enterprise_hrmsoracle peoplesoft enterprise hrmseq8.9
oracle:peoplesoft_enterprise_hrmsoracle peoplesoft enterprise hrmseq9.0
oracle:peoplesoft_enterprise_hrmsoracle peoplesoft enterprise hrmseq9.1
oracle:peoplesoft_productsoracle peoplesoft productseq8.9
oracle:peoplesoft_productsoracle peoplesoft productseq9.0
oracle:peoplesoft_productsoracle peoplesoft productseq9.1

CPE	Name	Operator	Version
oracle:peoplesoft_enterprise_hrms	oracle peoplesoft enterprise hrms	eq	8.9
oracle:peoplesoft_enterprise_hrms	oracle peoplesoft enterprise hrms	eq	9.0
oracle:peoplesoft_enterprise_hrms	oracle peoplesoft enterprise hrms	eq	9.1
oracle:peoplesoft_products	oracle peoplesoft products	eq	8.9
oracle:peoplesoft_products	oracle peoplesoft products	eq	9.0
oracle:peoplesoft_products	oracle peoplesoft products	eq	9.1