Oracle Peoplesoft Enterprise vulnerabilities
70 known vulnerabilities affecting oracle/peoplesoft_enterprise.
Total CVEs
70
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL15HIGH6MEDIUM42LOW7
Vulnerabilities
Page 1 of 4
CVE-2024-21283HIGHCVSS 8.1≥ 9.2.48, ≤ 9.2.502024-10-15
CVE-2024-21283 [HIGH] CWE-863 CVE-2024-21283: Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft (com
Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft (component: Global Payroll for Core). Supported versions that are affected are 9.2.48-9.2.50. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise HCM Global Payroll Core. Successfu
nvd
CVE-2024-21286MEDIUMCVSS 5.4v9.22024-10-15
CVE-2024-21286 [MEDIUM] CVE-2024-21286: Vulnerability in the PeopleSoft Enterprise ELM Enterprise Learning Management product of Oracle Peop
Vulnerability in the PeopleSoft Enterprise ELM Enterprise Learning Management product of Oracle PeopleSoft (component: Enterprise Learning Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise ELM Enterprise Learning Managem
nvd
CVE-2023-22047HIGHCVSS 7.5PoCv8.59v8.602023-07-18
CVE-2023-22047 [HIGH] CWE-306 CVE-2023-22047: Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Port
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can resu
nvd
CVE-2022-21639MEDIUMCVSS 6.1v8.59v8.602022-10-18
CVE-2022-21639 [MEDIUM] CWE-79 CVE-2022-21639: Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Elas
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Elastic Search Integration). Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks require h
nvd
CVE-2022-21602MEDIUMCVSS 5.3v8.58v8.59+1 more2022-10-18
CVE-2022-21602 [MEDIUM] CVE-2022-21602: Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Port
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.58, 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can resu
nvd
CVE-2022-21481MEDIUMCVSS 5.4v9.22022-04-19
CVE-2022-21481 [MEDIUM] CVE-2022-21481: Vulnerability in the PeopleSoft Enterprise FIN Cash Management product of Oracle PeopleSoft (compone
Vulnerability in the PeopleSoft Enterprise FIN Cash Management product of Oracle PeopleSoft (component: Financial Gateway). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Cash Management. Successful attacks require human inter
nvd
CVE-2021-35541MEDIUMCVSS 5.4v9.22021-10-20
CVE-2021-35541 [MEDIUM] CVE-2021-35541: Vulnerability in the PeopleSoft Enterprise SCM product of Oracle PeopleSoft (component: Supplier Por
Vulnerability in the PeopleSoft Enterprise SCM product of Oracle PeopleSoft (component: Supplier Portal). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM. Successful attacks require human interaction from a person other than th
nvd
CVE-2021-2151MEDIUMCVSS 6.7v8.56v8.57+1 more2021-04-22
CVE-2021-2151 [MEDIUM] CVE-2021-2151: Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Secu
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Security). Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can resu
nvd
CVE-2019-2519MEDIUMCVSS 6.1v9.22019-01-16
CVE-2019-2519 [MEDIUM] CVE-2019-2519: Vulnerability in the PeopleSoft Enterprise SCM eProcurement component of Oracle PeopleSoft Products
Vulnerability in the PeopleSoft Enterprise SCM eProcurement component of Oracle PeopleSoft Products (subcomponent: Manage Requisition Status). The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM eProcurement. Successful attacks requi
nvd
CVE-2011-0840MEDIUMCVSS 4.0v8.49.0v8.49.02+11 more2011-04-20
CVE-2011-0840 [MEDIUM] CVE-2011-0840: Unspecified vulnerability in Oracle PeopleSoft Enterprise PeopleTools 8.49 GA through 8.49.30 allows
Unspecified vulnerability in Oracle PeopleSoft Enterprise PeopleTools 8.49 GA through 8.49.30 allows remote authenticated users to affect confidentiality via unknown vectors related to File Processing.
nvd
CVE-2011-0828MEDIUMCVSS 4.3v8.82011-04-20
CVE-2011-0828 [MEDIUM] CVE-2011-0828: Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13 allows remote attackers to
Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13 allows remote attackers to affect integrity via unknown vectors related to Application Portal.
nvd
CVE-2011-0856MEDIUMCVSS 4.0v8.49v8.49.02+23 more2011-04-20
CVE-2011-0856 [MEDIUM] CVE-2011-0856: Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.49 GA through 8.49.30, 8.50 GA through 8
Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.49 GA through 8.49.30, 8.50 GA through 8.50.17, and 8.51 GA through 8.51.07 allows remote authenticated users to affect confidentiality via unknown vectors.
nvd
CVE-2011-0827LOWCVSS 3.5v8.50.0v8.50.07+10 more2011-04-20
CVE-2011-0827 [LOW] CVE-2011-0827: Unspecified vulnerability in the PeopleSoft Enterprise component in Oracle PeopleSoft Products 8.50
Unspecified vulnerability in the PeopleSoft Enterprise component in Oracle PeopleSoft Products 8.50 GA through 8.50.17 and 8.51 GA through 8.51.07 allows remote authenticated users to affect integrity via unknown vectors related to PeopleTools.
nvd
CVE-2011-0826LOWCVSS 3.5v8.8v8.9+2 more2011-04-20
CVE-2011-0826 [LOW] CVE-2011-0826: Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13, 8.9 Bundle #7, 9.0 Bundle
Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13, 8.9 Bundle #7, 9.0 Bundle #7, and 9.1 Bundle #4 allows remote authenticated users to affect integrity via unknown vectors related to Application Portal.
nvd
CVE-2010-4418HIGHCVSS 7.5v8.50.11v8.50.15+2 more2011-01-19
CVE-2010-4418 [HIGH] CVE-2010-4418: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft an
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.11 through 8.50.15 and 8.51GA through 8.51.05 allows remote attackers to affect confidentiality, integrity, and availability, related to PIA Core Technology.
nvd
CVE-2010-4426MEDIUMCVSS 5.0v8.49.0v8.49.29+4 more2011-01-19
CVE-2010-4426 [MEDIUM] CVE-2010-4426: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft an
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.0 through 8.49.29, 8.50.0 through 8.50.14, and 8.51.0 through 8.51.04 allows remote attackers to affect integrity, related to PIA Core Technology.
nvd
CVE-2010-4434MEDIUMCVSS 4.0v8.50.0v8.50.14+2 more2011-01-19
CVE-2010-4434 [MEDIUM] CVE-2010-4434: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft an
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.0 through 8.50.14 and 8.51.0 through 8.51.04 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal.
nvd
CVE-2010-4424MEDIUMCVSS 5.0v8.49.0v8.49.29+4 more2011-01-19
CVE-2010-4424 [MEDIUM] CVE-2010-4424: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft an
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.0 through 8.49.29, 8.50.0 through 8.50.14, and 8.51.0 through 8.51.04 allows remote attackers to affect availability via unknown vectors related to the Security sub-component.
nvd
CVE-2010-0879MEDIUMCVSS 4.0v8.49.26v8.50.072010-04-13
CVE-2010-0879 [MEDIUM] CVE-2010-0879: Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edward
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.26 and 8.50.07 allows remote authenticated users to affect confidentiality via unknown vectors.
nvd
CVE-2010-0880MEDIUMCVSS 4.0v8.49.26v8.50.072010-04-13
CVE-2010-0880 [MEDIUM] CVE-2010-0880: Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edward
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.26 and 8.50.07 allows remote attackers to affect confidentiality and integrity via unknown vectors.
nvd
1 / 4Next →