Vulnerabilities > Oracle > Peoplesoft Enterprise Peopletools

DATE CVE VULNERABILITY TITLE RISK
2020-09-09 CVE-2020-1968 Information Exposure Through Discrepancy vulnerability in multiple products
The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite.
network
high complexity
openssl canonical debian oracle fujitsu CWE-203
3.7
2020-09-04 CVE-2020-24977 Out-of-bounds Read vulnerability in multiple products
GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c.
6.5
2020-07-27 CVE-2020-7017 Cross-site Scripting vulnerability in multiple products
In Kibana versions before 6.8.11 and 7.8.1 the region map visualization in contains a stored XSS flaw.
network
high complexity
elasticsearch oracle CWE-79
6.7
2020-07-27 CVE-2020-7016 Resource Exhaustion vulnerability in multiple products
Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion.
network
high complexity
elasticsearch oracle CWE-400
4.8
2020-07-15 CVE-2020-14627 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56/8.57/8.58
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Query).
network
low complexity
oracle
6.1
2020-07-15 CVE-2020-14600 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56/8.57/8.58
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal).
network
low complexity
oracle
4.3
2020-07-15 CVE-2020-14592 Cross-site Scripting vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56/8.57/8.58
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Rich Text Editor).
network
low complexity
oracle CWE-79
6.1
2020-07-15 CVE-2020-14564 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56/8.57/8.58
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Environment Mgmt Console).
network
low complexity
oracle
2.7
2020-07-15 CVE-2020-14558 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56/8.57/8.58
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal).
network
low complexity
oracle
5.3
2020-07-15 CVE-2020-8203 Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.
network
high complexity
lodash oracle
7.4