CVE-2013-2408Oracle Peoplesoft Products vulnerability

6 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
0.3%
top 45.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Peoplesoft Products
Timeline
PublishedApr 17
Latest updateMay 17

Description

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect integrity via vectors related to PIA Core Technology and use of Internet Explorer 6.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDoracle/peoplesoft_products8.51, 8.52, 8.53+2

🔴Vulnerability Details

2
GHSA
GHSA-wj76-4fqw-24hh: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 82022-05-17
CVEList
CVE-2013-2408: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 82013-04-17

📋Vendor Advisories

3
Red Hat
php: hostname check bypassing vulnerability in SSL client2013-08-13
Red Hat
python: hostname check bypassing vulnerability in SSL module2013-08-12
Red Hat
ruby: hostname check bypassing vulnerability in SSL client2013-06-27
CVE-2013-2408 — Oracle vulnerability | cvebase