CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-10368
https://notcve.org/view.php?id=CVE-2017-10368
19 Oct 2017 — Vulnerability in the PeopleSoft Enterprise SCM eProcurement component of Oracle PeopleSoft Products (subcomponent: Manage Requisition Status). Supported versions that are affected are 9.1.00 and 9.2.00. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM eProcurement. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in PeopleSoft Enterprise SCM eProcurement, atta... • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10287
https://notcve.org/view.php?id=CVE-2017-10287
19 Oct 2017 — Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle PeopleSoft Products (subcomponent: Strategic Sourcing). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FSCM. Successful attacks of this vulnerability can result in unauthorized read access to a subset of PeopleSoft Enterprise FSCM accessible data. CVSS 3.0 Base Score 4.3 (Confidentiality impacts). • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10134
https://notcve.org/view.php?id=CVE-2017-10134
08 Aug 2017 — Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle PeopleSoft Products (subcomponent: eProcurement). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FSCM. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in PeopleSoft Enterprise FSCM, attacks may significantly impact additional products. Successful at... • http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10018
https://notcve.org/view.php?id=CVE-2017-10018
08 Aug 2017 — Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle PeopleSoft Products (subcomponent: Strategic Sourcing). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FSCM. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise FSCM accessible data. CVSS 3.0 Base Score 4.3 (Integrity impacts). • http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-3521
https://notcve.org/view.php?id=CVE-2017-3521
24 Apr 2017 — Vulnerability in the PeopleSoft Enterprise SCM Purchasing component of Oracle PeopleSoft Products (subcomponent: Supplier Registration). The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM Purchasing. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all PeopleSoft Enterprise SCM Purchasing accessibl... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-3525
https://notcve.org/view.php?id=CVE-2017-3525
24 Apr 2017 — Vulnerability in the PeopleSoft Enterprise SCM Service Procurement component of Oracle PeopleSoft Products (subcomponent: Usability). The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM Service Procurement. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all PeopleSoft Enterprise SCM Service Procur... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-3524
https://notcve.org/view.php?id=CVE-2017-3524
24 Apr 2017 — Vulnerability in the PeopleSoft Enterprise SCM Strategic Sourcing component of Oracle PeopleSoft Products (subcomponent: Bidder Registration). The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM Strategic Sourcing. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all PeopleSoft Enterprise SCM Strate... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-3522
https://notcve.org/view.php?id=CVE-2017-3522
24 Apr 2017 — Vulnerability in the PeopleSoft Enterprise SCM eSupplier Connection component of Oracle PeopleSoft Products (subcomponent: Vendor). The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM eSupplier Connection. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all PeopleSoft Enterprise SCM eSupplier Conne... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-5467
https://notcve.org/view.php?id=CVE-2016-5467
21 Jul 2016 — Unspecified vulnerability in the PeopleSoft Enterprise FSCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to eProcurement. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise FSCM en Oracle PeopleSoft Products 9.1 y 9.2 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores relacionados con eProcurement. • http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2011-2277
https://notcve.org/view.php?id=CVE-2011-2277
21 Jul 2011 — Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.0 Bundle #36 and 9.1 Bundle #13 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Purchasing. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise SCM en Oracle PeopleSoft Products v9.0 Bundle #36 y v9.1 Bundle #13 permite a usuarios remotos autenticados comprometer la confidencialidad y la integridad a través de vectores desconocidos re... • http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html •