CVE-2009-0982

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.19 allows remote authenticated users to affect integrity via unknown vectors.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:P/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://osvdb.org/53759
http://secunia.com/advisories/34693
http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
http://www.securityfocus.com/bid/34461
http://www.securitytracker.com/id?1022057
http://www.us-cert.gov/cas/techalerts/TA09-105A.html	US Government Resource

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.49.19:::::::*
	cpe:2.3:a:oracle:peoplesoft_enterprise::::::::

History

No history.

Information

Published : 2009-04-15 10:30

Updated : 2024-02-28 11:21

NVD link : CVE-2009-0982

Mitre link : CVE-2009-0982

CVE.ORG link : CVE-2009-0982

JSON object : View

Products Affected

oracle

peoplesoft_enterprise
jd_edwards_enterpriseone

CWE

NVD-CWE-noinfo

{"id": "CVE-2009-0982", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-04-15T10:30:00.500", "references": [{"url": "http://osvdb.org/53759", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/34693", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html", "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/34461", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id?1022057", "source": "secalert_us@oracle.com"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA09-105A.html", "tags": ["US Government Resource"], "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.19 allows remote authenticated users to affect integrity via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente PeopleSoft Enterprise PeopleTools en Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne v8.49.19 permite a usuarios autenticados remotamente afectar a la integridad a trav\u00e9s de vectores desconocidos."}], "lastModified": "2012-10-23T03:04:25.087", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.49.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEF1049F-38AF-49A7-98A1-10FCEE26760C"}, {"criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78CBB588-FC76-4DC3-9D7C-ED5E9249E59C"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}