Confidentiality and Integrity Vulnerability in Oracle PeopleSoft Products
CVE-2011-2279

Currently unrated

Key Information:

Vendor: Oracle
Status: Peoplesoft Products; Peoplesoft Enterprise Hrms
Vendor: CVE Published:; 21 July 2011

Summary

An unspecified vulnerability in the Oracle PeopleSoft Enterprise HRMS component may allow remote authenticated users to compromise the confidentiality and integrity of the system. This anomaly is specifically related to the Talent Acquisition Manager module, potentially leading to unauthorized access and manipulation of sensitive information. Organizations utilizing PeopleSoft Products 9.1 and Bundle #6 should ensure they are aware of this risk and take appropriate measures to secure their systems against potential exploitation.

References

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

third-party-advisoryx_refsource_CERT

http://www.oracle.com/technetwork/topics/security/cpujuly...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 21, 2011
Vulnerability Reserved
Jun 2, 2011