CVSS: 7.5EPSS: 60%CPEs: 38EXPL: 2CVE-2020-1967 – Segmentation fault in SSL_check_chain
https://notcve.org/view.php?id=CVE-2020-1967
21 Apr 2020 — Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL ver... • https://packetstorm.news/files/id/157527 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5451
https://notcve.org/view.php?id=CVE-2008-5451
14 Jan 2009 — Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.5 allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente JD Edwards Tools de Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.97.2.5, permite a usuarios autenticados en remoto comprometer la confidencialidad a través de vectores desconocidos. • http://secunia.com/advisories/33525 •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5452
https://notcve.org/view.php?id=CVE-2008-5452
14 Jan 2009 — Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabildiad no especificada en el componente PeopleSoft Enterprise HRMS en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.9.18 permite a usuarios remotamente autentificados afectar la confidencialidad y la integridad, mediante vectores desconocidos. • http://secunia.com/advisories/33525 •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5455
https://notcve.org/view.php?id=CVE-2008-5455
14 Jan 2009 — Unspecified vulnerability in the PeopleSoft Enterprise HRMS - ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise HRMS - ePerformance en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.9.18 permite a usuarios remotamente autentificados afectar la confidencialidad e integridad mediante vectores des... • http://secunia.com/advisories/33525 •
CVSS: 9.1EPSS: 1%CPEs: 4EXPL: 0CVE-2008-4000
https://notcve.org/view.php?id=CVE-2008-4000
14 Oct 2008 — Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote attackers to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the Oracle October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue allows bypass of the lockout mechanism using brute force guessing of credentials and a response discrepancy information leak when the password... • http://secunia.com/advisories/32291 •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2008-4004
https://notcve.org/view.php?id=CVE-2008-4004
14 Oct 2008 — Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors. Una vulnerabilidad sin especificar en el componente JDE EnterpriseOne Business Service Server de Oracle PeopleSoft Enterprise, y de JD Edwards EnterpriseOne 8.97.2.2 y 8.98.0.1 permite a un usuario local comprometer la integridad de los datos por medio de un ataqu... • http://secunia.com/advisories/32291 •
CVSS: 9.0EPSS: 2%CPEs: 6EXPL: 0CVE-2008-1828
https://notcve.org/view.php?id=CVE-2008-1828
16 Apr 2008 — Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.22.19, 8.48.16, and 8.49.09 has unknown impact and remote authenticated attack vectors, aka PSE01. Vulnerabilidad sin especificar en el componente PeopleSoft PeopleTools de Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.22.19, 8.48.16, y 8.49.09, posee un impacto desconocido y vectores de ataque para autenticación remota, también conocido como PSE01. • http://secunia.com/advisories/29829 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2008-1830
https://notcve.org/view.php?id=CVE-2008-1830
16 Apr 2008 — Unspecified vulnerability in the PeopleSoft HCM ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9 and 9.0 has unknown impact and remote attack vectors, aka PSE03. Vulnerabilidad no especificada en el componente PeopleSoft HCM ePerformance en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.9 y 9.0 tiene impacto y vectores de ataque remoto desconocidos, también conocida como PSE03. • http://secunia.com/advisories/29829 •
CVSS: 10.0EPSS: 1%CPEs: 46EXPL: 0CVE-2006-1884
https://notcve.org/view.php?id=CVE-2006-1884
20 Apr 2006 — Unspecified vulnerability in the Oracle Thesaurus Management System component in Oracle E-Business Suite and OPA 4.5.2 Applications has unknown impact and attack vectors, aka Vuln# OPA01. • http://secunia.com/advisories/19712 •
CVSS: 10.0EPSS: 3%CPEs: 4EXPL: 0CVE-2005-3465
https://notcve.org/view.php?id=CVE-2005-3465
02 Nov 2005 — Unspecified vulnerability in JDEdwards HTML Server in Oracle EnterpriseOne 8.94 OneWorld XE up to 8.95_B1, 8.94_Q1, and SP23_K1 has unknown impact and attack vectors, as identified by Oracle Vuln# JDE01. • http://secunia.com/advisories/17250 •