CVE-2014-2495

Unspecified vulnerability in the PeopleSoft Enterprise SCM Purchasing component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Purchasing.

Published: Jul 17, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-2495
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.3
AV:A/AC:M/Au:S/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / peoplesoft_products	9.2	9.2.x
oracle / peoplesoft_products	9.1	9.1.x

http://seclists.org/fulldisclosure/2014/Dec/23
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.securitytracker.com/id/1030586
http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Vulnerability Database

289,697

CVE-2014-2495