CVE-2008-2621 — Oracle JD Edwards Enterpriseone vulnerability

3 documents3 sources

Severity

4.0MEDIUMNVD

CNA6.5

EPSS

0.4%

top 40.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle JD Edwards Enterpriseone Oracle Peoplesoft Enterprise

Timeline

PublishedJul 15

Latest updateMay 1

Description

Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.17 and 8.49.11 has unknown impact and remote authenticated attack vectors, a different vulnerability than CVE-2008-2615, CVE-2008-2616, CVE-2008-2617, CVE-2008-2618, CVE-2008-2620, and CVE-2008-2622.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

▶NVDoracle/peoplesoft_enterprise8.48.17, 8.49.11+1

▶NVDoracle/jd_edwards_enterpriseone8.48.17, 8.49.11+1

🔴Vulnerability Details

GHSA

GHSA-356f-694x-6f4f: Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8↗2022-05-01

▶

CVEList

CVE-2008-2621: Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8↗2008-07-15

▶