Integrity Vulnerability in Oracle PeopleSoft Products Affecting eProcurement Component
CVE-2016-0412

Currently unrated

Key Information:

Vendor: Oracle
Status: Peoplesoft Supply Chain Management Eprocurement
Vendor: CVE Published:; 21 January 2016

Summary

An unspecified integrity vulnerability exists within the eProcurement component of Oracle PeopleSoft Products versions 9.1 and 9.2. This flaw can be exploited by remote authenticated users, potentially allowing them to impact the integrity of the 'Manage Requisition Status' functionality through unknown vectors. Organizations using affected versions should assess their exposure and implement necessary security measures.

References

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1034720

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 21, 2016
Vulnerability Reserved
Dec 9, 2015