CVE-2008-4004

4 documents4 sources
Severity
3.2LOW
EPSS
0.2%
top 59.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Jdedwards EnterpriseoneOracle Peoplesoft Enterprise
Timeline
PublishedOct 14
Latest updateMay 2

Description

Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors.

CVSS vector

AV:L/AC:L/C:P/I:P/A:NExploitability: 3.1 | Impact: 4.9

Affected Packages2 packages

NVDjdedwards/enterpriseone8.97.2.2, 8.98.0.1+1
NVDoracle/peoplesoft_enterprise8.97.2.2, 8.98.0.1+1

🔴Vulnerability Details

2
GHSA
GHSA-v9c5-96rg-h24g: Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 82022-05-02
CVEList
CVE-2008-4004: Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 82008-10-14

💥Exploits & PoCs

1
Exploit-DB
Easy-Clanpage 2.1 - SQL Injection2010-03-30
CVE-2008-4004 (LOW CVSS 3.2) | Unspecified vulnerability in the JD | cvebase.io