CVSS: 7.8EPSS: 65%CPEs: 2EXPL: 0CVE-2023-22047
https://notcve.org/view.php?id=CVE-2023-22047
18 Jul 2023 — Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all PeopleSoft Enterprise PeopleTools accessible data. CVSS 3.1 Base Score 7.5 (Confidentialit... • https://www.oracle.com/security-alerts/cpujul2023.html • CWE-306: Missing Authentication for Critical Function •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-21602
https://notcve.org/view.php?id=CVE-2022-21602
18 Oct 2022 — Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.58, 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized read access to a subset of PeopleSoft Enterprise PeopleTools accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). • https://www.oracle.com/security-alerts/cpuoct2022.html •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2022-21639
https://notcve.org/view.php?id=CVE-2022-21639
18 Oct 2022 — Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Elastic Search Integration). Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in PeopleSoft Enterprise PeopleTools, attacks may significantly impact add... • https://www.oracle.com/security-alerts/cpuoct2022.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.7EPSS: 0%CPEs: 3EXPL: 0CVE-2021-2151
https://notcve.org/view.php?id=CVE-2021-2151
22 Apr 2021 — Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Security). Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all PeopleSoft Enterprise PeopleTools accessible data as well as unaut... • https://www.oracle.com/security-alerts/cpuapr2021.html •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2011-0826
https://notcve.org/view.php?id=CVE-2011-0826
20 Apr 2011 — Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13, 8.9 Bundle #7, 9.0 Bundle #7, and 9.1 Bundle #4 allows remote authenticated users to affect integrity via unknown vectors related to Application Portal. Vulnerabilidad sin especificar en Oracle PeopleSoft Enterprise 8.8 Bundle #13, 8.9 Bundle #7, 9.0 Bundle #7 y 9.1 Bundle #4 permite a usuarios autenticados remotos vulnerar la integridad a través de vectores desconocidos relacionados con el portal de aplicaciones ("Application Portal"... • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 3.5EPSS: 0%CPEs: 24EXPL: 0CVE-2011-0827
https://notcve.org/view.php?id=CVE-2011-0827
20 Apr 2011 — Unspecified vulnerability in the PeopleSoft Enterprise component in Oracle PeopleSoft Products 8.50 GA through 8.50.17 and 8.51 GA through 8.51.07 allows remote authenticated users to affect integrity via unknown vectors related to PeopleTools. Vulnerabilidad sin especificar en el componente PeopleSoft Enterprise de Oracle PeopleSoft Products 8.50 GA hasta la 8.50.17 y 8.51 GA hasta la 8.51.07 permite a usuarios autenticados remotos vulnerar la integridad a través de vectores desconocidos relacionados con P... • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2011-0828
https://notcve.org/view.php?id=CVE-2011-0828
20 Apr 2011 — Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13 allows remote attackers to affect integrity via unknown vectors related to Application Portal. Vulnerabilidad sin especificar en Oracle PeopleSoft Enterprise 8.8 Bundle #13 permite a usuarios remotos vulnerar la integridad a través de vectores desconocidos relacionados con el portal de aplicaciones ("Application Portal"). • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 6.5EPSS: 0%CPEs: 24EXPL: 0CVE-2011-0840
https://notcve.org/view.php?id=CVE-2011-0840
20 Apr 2011 — Unspecified vulnerability in Oracle PeopleSoft Enterprise PeopleTools 8.49 GA through 8.49.30 allows remote authenticated users to affect confidentiality via unknown vectors related to File Processing. Vulnerabilidad sin especificar en Oracle PeopleSoft Enterprise PeopleTools 8.49 GA hasta la 8.49.30 permite a usuarios autenticados remotos vulnerar la confidencialidad a través de vectores desconocidos relacionados con el el procesamiento de archivos. • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 6.5EPSS: 0%CPEs: 25EXPL: 0CVE-2011-0856
https://notcve.org/view.php?id=CVE-2011-0856
20 Apr 2011 — Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.49 GA through 8.49.30, 8.50 GA through 8.50.17, and 8.51 GA through 8.51.07 allows remote authenticated users to affect confidentiality via unknown vectors. Una vulnerabilidad no especificada en PeopleSoft Enterprise de Oracle versiones 8.49 GA hasta 8.49.30, versiones 8.50 GA hasta 8.50.17, y versiones 8.51 GA hasta 8.51.07, permite a los usuarios identificados remotos afectar la confidencialidad por medio de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2010-4434
https://notcve.org/view.php?id=CVE-2010-4434
19 Jan 2011 — Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.0 through 8.50.14 and 8.51.0 through 8.51.04 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal. Vulnerabilidad no especificada en el componente de PeopleSoft Enterprise para Oracle PeopleTools PeopleSoft y JDEdwards Suite v8.50.0 hasta v8.51.0 y v8.50.14 hasta 8.51.04 permite a usuarios autenticados remotamente afectar a la confidencialida... • http://osvdb.org/70568 •