33 matches found
CVE-2021-2408
Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Notification Configuration. The supported version that is affected is 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...
Design/Logic Flaw
Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Notification Configuration. The supported version that is affected is 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...
CVE-2021-2408
CVE-2021-2408 affects Oracle PeopleSoft: PT PeopleTools (Notification Configuration) 8.59. Vulnerable component and impact described as unauthorized read/update/delete of certain data, with network access over HTTP and user interaction required. Root cause aligns with a logic/authorization issue ...
CVE-2021-2408
Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Notification Configuration. The supported version that is affected is 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...
CVE-2021-2218
Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Health Center. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterpris...
Code injection
Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Health Center. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterpris...
CVE-2021-2218
Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Health Center. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterpris...
CVE-2021-2218
The CVE-2021-2218 issue affects Oracle PeopleSoft: Health Center in PeopleSoft Enterprise PT PeopleTools, with vulnerable versions 8.56 and 8.57. The flaw allows an unauthenticated attacker with network access via HTTP to compromise the PT PeopleTools component, potentially enabling unauthorized ...
Design/Logic Flaw
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Application Server. Supported versions that are affected are 8.55, 8.56 and 8.57. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-2748
CVE-2019-2748 affects Oracle PeopleSoft Products’ PeopleSoft Enterprise PT PeopleTools (Application Server) with affected versions 8.55, 8.56, and 8.57. The vulnerability allows a low-privileged attacker with network access via HTTP to compromise PeopleSoft PT PeopleTools, potentially enabling un...
CVE-2019-2748
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Application Server. Supported versions that are affected are 8.55, 8.56 and 8.57. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-2599
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Pagelet Wizard. Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
CVE-2019-2599
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Pagelet Wizard. Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
CVE-2019-2586
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: RemoteCall. Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
Design/Logic Flaw
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Application Server. Supported versions that are affected are 8.55, 8.56 and 8.57. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-2594
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Application Server. Supported versions that are affected are 8.55, 8.56 and 8.57. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2018-2793
CVE-2018-2793 affects Oracle PeopleSoft Enterprise PeopleTools PsAdmin in PeopleSoft versions 8.54–8.56. An unauthenticated attacker with logon to the infrastructure hosting PeopleTools can gain unauthorized access to data; CVSSv3 base score 6.2 (Confidentiality High). Root cause details are desc...
CVE-2018-2774
CVE-2018-2774 affects Oracle PeopleSoft Enterprise PT PeopleTools, subcomponent SQR, in versions 8.54, 8.55, and 8.56. The vulnerability allows an unauthenticated, network-accessing attacker over HTTP to perform unauthorized update/insert/delete operations and read data, with a partial denial of ...
CVE-2018-2774
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: SQR. Supported versions that are affected are 8.54, 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...
CVE-2017-10373
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: Health Center. Supported versions that are affected are 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...