Vulnerability Details : CVE-2012-1748
Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Candidate Gateway, a different vulnerability than CVE-2012-0562.
Products affected by CVE-2012-1748
- cpe:2.3:a:oracle:peoplesoft_products:9.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-1748
0.19%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 56 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-1748
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
8.0
|
2.9
|
NIST |
References for CVE-2012-1748
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/77027
Oracle PeopleSoft Enterprise HRMS Candidate Gateway information disclosure CVE-2012-1748 Vulnerability Report
-
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Oracle Critical Patch Update - July 2012Patch;Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
mandriva.comBroken Link
-
http://www.securityfocus.com/bid/54527
Oracle Oracle PeopleSoft Enterprise HRMS CVE-2012-1748 Remote Security VulnerabilityThird Party Advisory;VDB Entry
-
http://www.securitytracker.com/id?1027265
Oracle PeopleSoft Products Lets Remote Authenticated Users Partially Access Data, Modify Data, and Deny Service - SecurityTrackerThird Party Advisory;VDB Entry
Jump to