Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Vulnerability in the PeopleSoft Enterprise SCM eProcurement product of Oracle PeopleSoft (component: Manage Requisition Status). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM eProcurement. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise SCM eProcurement accessible data as well as unauthorized read access to a subset of PeopleSoft Enterprise SCM eProcurement accessible data. CVSS 3.1 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
Oracle PeopleSoft Enterprise SCM eProcurement 输入验证错误漏洞
Vulnerability Description
Oracle PeopleSoft Enterprise SCM eProcurement是美国Oracle公司的一个应用软件。用于临时用户请求项目。 PeopleSoft Enterprise SCM eProcurement Manage Requisition Status 9.2 存在输入验证错误漏洞,该漏洞允许通过HTTP网络访问的低特权攻击者危害PeopleSoft企业SCM eProcurement。导致对PeopleSoft Enterprise SCM eProcurement可访问数据
CVSS Information
N/A
Vulnerability Type
N/A