Vulnerability Details : CVE-2011-3520
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.49, 8.50, and 8.51 allows remote authenticated users to affect integrity via unknown vectors related to Personalization.
Products affected by CVE-2011-3520
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.49:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.50:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.51:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_products:8.50:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_products:8.51:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_products:8.49:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-3520
0.21%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 58 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-3520
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.8
|
LOW | AV:N/AC:M/Au:M/C:N/I:P/A:N |
5.5
|
2.9
|
NIST |
References for CVE-2011-3520
-
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
Oracle Critical Patch Update - October 2011Patch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/70796
Oracle PeopleSoft PeopleSoft Enterprise PeopleTools Personalization unspecified CVE-2011-3520 Vulnerability Report
-
http://www.securityfocus.com/bid/50247
Oracle PeopleSoft CVE-2011-3520 PeopleSoft Enterprise PeopleTools Remote Vulnerability
Jump to