Oracle

Peoplesoft Enterprise Peopletools

339 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2020-2775

  • EPSS 1.18%
  • Veröffentlicht 15.04.2020 14:15:26
  • Zuletzt bearbeitet 21.11.2024 05:26:14

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

8.6

CVE-2020-2776

  • EPSS 1.42%
  • Veröffentlicht 15.04.2020 14:15:26
  • Zuletzt bearbeitet 21.11.2024 05:26:14

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Security). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access vi...

6.1

CVE-2020-2751

  • EPSS 0.8%
  • Veröffentlicht 15.04.2020 14:15:25
  • Zuletzt bearbeitet 21.11.2024 05:26:09

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via ...

5.3

CVE-2020-1954

  • EPSS 0.1%
  • Veröffentlicht 01.04.2020 21:15:14
  • Zuletzt bearbeitet 21.11.2024 05:11:43

Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. If the ‘createMBServerConnectorFactory‘ property of the default InstrumentationManagerImpl is not disabled, then it is vulnerable to...

6.1

CVE-2020-9281

  • EPSS 0.77%
  • Veröffentlicht 07.03.2020 01:15:15
  • Zuletzt bearbeitet 21.11.2024 05:40:20

A cross-site scripting (XSS) vulnerability in the HTML Data Processor for CKEditor 4.0 before 4.14 allows remote attackers to inject arbitrary web script through a crafted "protected" comment (with the cke_protected syntax).

7.5

CVE-2019-20388

  • EPSS 0.56%
  • Veröffentlicht 21.01.2020 23:15:13
  • Zuletzt bearbeitet 21.11.2024 04:38:21

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

7.5

CVE-2020-7595

  • EPSS 0.47%
  • Veröffentlicht 21.01.2020 23:15:13
  • Zuletzt bearbeitet 21.11.2024 05:37:26

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.

4.3

CVE-2020-2687

  • EPSS 1.1%
  • Veröffentlicht 15.01.2020 17:15:26
  • Zuletzt bearbeitet 21.11.2024 05:26:00

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Elastic Search). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network acc...

6.1

CVE-2020-2663

  • EPSS 0.8%
  • Veröffentlicht 15.01.2020 17:15:24
  • Zuletzt bearbeitet 21.11.2024 05:25:56

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: PIA Core Technology). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with networ...

6.1

CVE-2020-2598

  • EPSS 0.8%
  • Veröffentlicht 15.01.2020 17:15:20
  • Zuletzt bearbeitet 21.11.2024 05:25:41

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Activity Guide). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network acc...