Vulnerabilities > Oracle > Peoplesoft Enterprise Peopletools > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-07-21 CVE-2016-3478 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to File Processing.
network
low complexity
oracle
6.1
2016-04-21 CVE-2016-3442 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Portal.
network
low complexity
oracle
5.4
2016-04-21 CVE-2016-3435 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect availability via vectors related to PIA Core Technology.
network
low complexity
oracle
4.7
2016-04-21 CVE-2016-3423 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-0698.
network
low complexity
oracle
5.4
2016-04-21 CVE-2016-3417 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to PIA Search Functionality.
network
low complexity
oracle
5.4
2016-04-21 CVE-2016-0698 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-3423.
network
low complexity
oracle
5.4
2016-04-21 CVE-2016-0685 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to File Processing.
network
low complexity
oracle
5.4
2016-04-21 CVE-2016-0683 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Search Framework.
network
low complexity
oracle
5.4
2016-04-21 CVE-2016-0408 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.53/8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53 through 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to the Activity Guide sub-component.
network
low complexity
oracle
5.4
2016-02-15 CVE-2015-3197 Information Exposure vulnerability in multiple products
ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.
network
high complexity
oracle openssl CWE-200
5.9