CVE-2012-0089 — Oracle Peoplesoft Products vulnerability

7 documents4 sources

Severity

4.0MEDIUMNVD

EPSS

0.2%

top 61.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Peoplesoft Products

Timeline

PublishedJan 18

Latest updateMay 4

Description

Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to ePerformance.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/peoplesoft_products9.1

🔴Vulnerability Details

GHSA

GHSA-mprx-wcf5-wmxr: Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9↗2022-05-04

▶

CVEList

CVE-2012-0089: Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9↗2012-01-18

▶

💬Community

Bugzilla

CVE-2012-0062 JON: Unapproved agents can hijack an approved agent's endpoint by using a null security token↗2012-01-19

▶

Bugzilla

CVE-2012-0052 JON: Unapproved agents can connect using the name of an existing approved agent↗2012-01-16

▶

Bugzilla

CVE-2011-4573 JON: Incorrect delete permissions check↗2011-12-05

▶

Bugzilla

CVE-2011-3206 JON: Multiple XSS flaws↗2011-08-31

▶