Vulnerabilities > Oracle > Peoplesoft Enterprise Peopletools

DATE CVE VULNERABILITY TITLE RISK
2019-06-19 CVE-2019-2729 Improper Access Control vulnerability in Oracle products
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services).
network
low complexity
oracle CWE-284
critical
9.8
2019-05-01 CVE-2019-0227 Server-Side Request Forgery (SSRF) vulnerability in multiple products
A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006.
high complexity
apache oracle CWE-918
7.5
2019-04-26 CVE-2019-2725 Injection vulnerability in Oracle products
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services).
network
low complexity
oracle CWE-74
critical
9.8
2019-04-23 CVE-2019-2637 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.55/8.56/8.57
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Core Technology).
network
low complexity
oracle
6.1
2019-04-23 CVE-2019-2598 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.55/8.56/8.57
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: SQR).
network
low complexity
oracle
8.7
2019-04-23 CVE-2019-2597 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.55/8.56/8.57
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Core Technology).
network
low complexity
oracle
5.4
2019-04-23 CVE-2019-2594 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.55/8.56/8.57
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: Application Server).
network
high complexity
oracle
6.8
2019-04-23 CVE-2019-2586 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.55/8.56/8.57
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: RemoteCall).
network
low complexity
oracle
4.3
2019-04-23 CVE-2019-2573 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56/8.57
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Fluid Homepage & Navigation).
network
low complexity
oracle
4.3
2019-04-20 CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. 6.1