Remote Authentication Vulnerability in Oracle PeopleSoft Products
CVE-2016-0591

Currently unrated

Key Information:

Vendor: Oracle
Status: Peoplesoft Supply Chain Management Purchasing
Vendor: CVE Published:; 21 January 2016

Summary

An unspecified vulnerability in the Purchasing component of Oracle's PeopleSoft Enterprise Supply Chain Management products (versions 9.1 and 9.2) allows remote authenticated users to potentially compromise the confidentiality and integrity of the system. This vulnerability is related to the management of supplier changes and can be exploited through unknown vectors, posing significant risks to data integrity.

References

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1034720

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 21, 2016
Vulnerability Reserved
Dec 9, 2015