CPE-8AAB205E-E68F-4E12-9412-8E9B806B1823 Detail

CPE Details

Oracle PeopleSoft Enterprise PT PeopleTools 8.57

Vendor

oracle

Product

peoplesoft_enterprise_pt_peopletools

Version

8.57

Created

2021-04-24
01h37 +00:00

Modified

2021-07-15
11h26 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:oracle:peoplesoft_enterprise_pt_peopletools:8.57:::::::*

Informations

Vendor

oracle

Product

peoplesoft_enterprise_pt_peopletools

Version

8.57

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-2218	2021-04-22 19h53 +00:00	Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft (component: Health Center). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PT PeopleTools. While the vulnerability is in PeopleSoft Enterprise PT PeopleTools, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise PT PeopleTools accessible data as well as unauthorized read access to a subset of PeopleSoft Enterprise PT PeopleTools accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of PeopleSoft Enterprise PT PeopleTools. CVSS 3.1 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L).	8.3	High
CVE-2020-13956	2020-12-02 15h20 +00:00	Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.	5.3	Medium
CVE-2017-18640	2019-12-11 23h00 +00:00	The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.	7.5	High
CVE-2019-12402	2019-08-28 22h00 +00:00	The file name encoding algorithm used internally in Apache Commons Compress 1.15 to 1.18 can get into an infinite loop when faced with specially crafted inputs. This can lead to a denial of service attack if an attacker can choose the file names inside of an archive created by Compress.	7.5	High
CVE-2019-10086	2019-08-20 18h10 +00:00	In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of the PropertyUtilsBean.	7.3	High

Oracle PeopleSoft Enterprise PT PeopleTools 8.57

CPE Details

CPE Name: cpe:2.3:a:oracle:peoplesoft_enterprise_pt_peopletools:8.57:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:oracle:peoplesoft_enterprise_pt_peopletools:8.57:::::::*