CVSS: 7.5EPSS: 60%CPEs: 38EXPL: 2CVE-2020-1967 – Segmentation fault in SSL_check_chain
https://notcve.org/view.php?id=CVE-2020-1967
21 Apr 2020 — Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL ver... • https://packetstorm.news/files/id/157527 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5451
https://notcve.org/view.php?id=CVE-2008-5451
14 Jan 2009 — Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.5 allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente JD Edwards Tools de Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.97.2.5, permite a usuarios autenticados en remoto comprometer la confidencialidad a través de vectores desconocidos. • http://secunia.com/advisories/33525 •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5452
https://notcve.org/view.php?id=CVE-2008-5452
14 Jan 2009 — Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabildiad no especificada en el componente PeopleSoft Enterprise HRMS en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.9.18 permite a usuarios remotamente autentificados afectar la confidencialidad y la integridad, mediante vectores desconocidos. • http://secunia.com/advisories/33525 •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5455
https://notcve.org/view.php?id=CVE-2008-5455
14 Jan 2009 — Unspecified vulnerability in the PeopleSoft Enterprise HRMS - ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise HRMS - ePerformance en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.9.18 permite a usuarios remotamente autentificados afectar la confidencialidad e integridad mediante vectores des... • http://secunia.com/advisories/33525 •
CVSS: 9.1EPSS: 1%CPEs: 4EXPL: 0CVE-2008-4000
https://notcve.org/view.php?id=CVE-2008-4000
14 Oct 2008 — Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote attackers to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the Oracle October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue allows bypass of the lockout mechanism using brute force guessing of credentials and a response discrepancy information leak when the password... • http://secunia.com/advisories/32291 •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2008-4004
https://notcve.org/view.php?id=CVE-2008-4004
14 Oct 2008 — Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors. Una vulnerabilidad sin especificar en el componente JDE EnterpriseOne Business Service Server de Oracle PeopleSoft Enterprise, y de JD Edwards EnterpriseOne 8.97.2.2 y 8.98.0.1 permite a un usuario local comprometer la integridad de los datos por medio de un ataqu... • http://secunia.com/advisories/32291 •
CVSS: 9.0EPSS: 2%CPEs: 6EXPL: 0CVE-2008-1828
https://notcve.org/view.php?id=CVE-2008-1828
16 Apr 2008 — Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.22.19, 8.48.16, and 8.49.09 has unknown impact and remote authenticated attack vectors, aka PSE01. Vulnerabilidad sin especificar en el componente PeopleSoft PeopleTools de Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.22.19, 8.48.16, y 8.49.09, posee un impacto desconocido y vectores de ataque para autenticación remota, también conocido como PSE01. • http://secunia.com/advisories/29829 •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2008-1829
https://notcve.org/view.php?id=CVE-2008-1829
16 Apr 2008 — Unspecified vulnerability in the PeopleSoft HCM Recruiting component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.8 SP1 has unknown impact and remote attack vectors, aka PSE02. Vulnerabilidad no especificada en el componente PeopleSoft HCM Recruiting en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.8 SP1 tiene impacto y vectores de ataque remoto desconocidos, también conocida como PSE02. • http://secunia.com/advisories/29829 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2008-1830
https://notcve.org/view.php?id=CVE-2008-1830
16 Apr 2008 — Unspecified vulnerability in the PeopleSoft HCM ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9 and 9.0 has unknown impact and remote attack vectors, aka PSE03. Vulnerabilidad no especificada en el componente PeopleSoft HCM ePerformance en Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne 8.9 y 9.0 tiene impacto y vectores de ataque remoto desconocidos, también conocida como PSE03. • http://secunia.com/advisories/29829 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2007-2134
https://notcve.org/view.php?id=CVE-2007-2134
18 Apr 2007 — Unspecified vulnerability in the HTML Server in Oracle JD Edwards EnterpriseOne SP23_Q1 and 8.96.I1 has unknown impact and local attack vectors, aka JDE01. Vulnerabilidad no especificada en el Servidor HTML de Oracle JD Edwards EnterpriseOne SP23_Q1 y 8.96.I1 tiene impacto y vectores de ataque desconocidos, también conocido como JDE01. • http://www.oracle.com/technetwork/topics/security/cpuapr2007-090632.html •