Integrity Vulnerability in Oracle JD Edwards 8.98 SP 24
CVE-2011-3514

Currently unrated

Key Information:

Vendor: Oracle
Status: Jd Edwards Enterpriseone Tools; Jd Edwards Products
Vendor: CVE Published:; 18 January 2012

Summary

An integrity vulnerability exists in the EnterpriseOne Tools component of Oracle JD Edwards version 8.98 SP 24. This flaw allows remote authenticated users to manipulate system integrity, potentially compromising application security related to the Enterprise Infrastructure Security (JDENET) framework. Users should ensure proper access controls and monitoring to mitigate risks associated with this vulnerability.

References

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 18, 2012
Vulnerability Reserved
Sep 16, 2011