Remote Authentication Flaws in Oracle PeopleSoft and JDEdwards Suite
CVE-2010-4461

Currently unrated

Key Information:

Vendor: Oracle
Status: Peoplesoft And Jdedwards Product Suite
Vendor: CVE Published:; 19 January 2011

What is CVE-2010-4461?

An unspecified vulnerability in the PeopleSoft Enterprise HRMS component of Oracle's PeopleSoft and JDEdwards Suite allows remote authenticated users to potentially compromise the confidentiality and integrity of the affected systems. This vulnerability is linked to interactions within the ePerformance module, exposing the product to risks through unknown vectors. Organizations utilizing these versions should prioritize reviewing their security configuration and ensure appropriate access controls are in place.

References

http://www.vupen.com/english/advisories/2011/0147

vdb-entryx_refsource_VUPEN

http://osvdb.org/70591

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/64790

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 19, 2011
Vulnerability Reserved
Dec 6, 2010