CVE-2014-6460Oracle Peoplesoft Products vulnerability

3 documents3 sources
Severity
4.9MEDIUMNVD
EPSS
0.2%
top 56.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Peoplesoft Products
Timeline
PublishedOct 15
Latest updateMay 17

Description

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52, 8.53, and 8.54 allows remote authenticated users to affect confidentiality and integrity via vectors related to QUERY.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 6.8 | Impact: 4.9

Affected Packages1 packages

NVDoracle/peoplesoft_products8.52, 8.53, 8.54+2

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-mjg2-6595-cpvg: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 82022-05-17
CVEList
CVE-2014-6460: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 82014-10-15
CVE-2014-6460 — Oracle vulnerability | cvebase