CVE-2008-0349 — Oracle Application Server vulnerability

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

1.7%

top 17.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Application Server Oracle Collaboration Suite Oracle Database Server +2 more

Timeline

PublishedJan 17

Latest updateMay 1

Description

Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.15 and 8.49.07 has unknown impact and remote attack vectors, aka PSE02.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages5 packages

▶NVDoracle/peoplesoft_enterprise_peopletools8.47, 8.48, 8.49+2

▶NVDoracle/database_server7 versions+6

▶NVDoracle/e-business_suite7 versions+6

▶NVDoracle/application_server8 versions+7

▶NVDoracle/collaboration_suite10.1.2

🔴Vulnerability Details

GHSA

GHSA-mwj6-hw8m-4q6p: Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8↗2022-05-01

▶

CVEList

CVE-2008-0349: Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8↗2008-01-17

▶