Vulnerabilities (CVE)

Filtered by vendor Jdedwards Subscribe
Filtered by product Enterpriseone
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-1967 10 Broadcom, Debian, Fedoraproject and 7 more 26 Fabric Operating System, Debian Linux, Fedora and 23 more 2024-11-21 5.0 MEDIUM 7.5 HIGH
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL versions prior to 1.1.1d. Fixed in OpenSSL 1.1.1g (Affected 1.1.1d-1.1.1f).
CVE-2008-5455 2 Jdedwards, Oracle 2 Enterpriseone, Peoplesoft Enterprise 2024-11-21 4.9 MEDIUM N/A
Unspecified vulnerability in the PeopleSoft Enterprise HRMS - ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
CVE-2008-5452 2 Jdedwards, Oracle 2 Enterpriseone, Peoplesoft Enterprise 2024-11-21 5.5 MEDIUM N/A
Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
CVE-2008-5451 2 Jdedwards, Oracle 2 Enterpriseone, Peoplesoft Enterprise 2024-11-21 4.0 MEDIUM N/A
Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.5 allows remote authenticated users to affect confidentiality via unknown vectors.
CVE-2008-4004 2 Jdedwards, Oracle 2 Enterpriseone, Peoplesoft Enterprise 2024-11-21 3.2 LOW N/A
Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors.
CVE-2008-4000 2 Jdedwards, Oracle 4 Enterpriseone, Jd Edwards Enterpriseone, Peoplesoft Enterprise and 1 more 2024-11-21 6.4 MEDIUM N/A
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote attackers to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the Oracle October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue allows bypass of the lockout mechanism using brute force guessing of credentials and a response discrepancy information leak when the password is correct.
CVE-2008-1830 2 Jdedwards, Oracle 2 Enterpriseone, Peoplesoft Hcm Eperformance 2024-11-21 9.0 HIGH N/A
Unspecified vulnerability in the PeopleSoft HCM ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9 and 9.0 has unknown impact and remote attack vectors, aka PSE03.
CVE-2008-1828 2 Jdedwards, Oracle 2 Enterpriseone, Peoplesoft Enterprise 2024-11-21 9.0 HIGH N/A
Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.22.19, 8.48.16, and 8.49.09 has unknown impact and remote authenticated attack vectors, aka PSE01.