CVE-2008-4004

EUVD-2008-3989
Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:S/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 40%
Affected Products (NVD)
VendorProductVersion
jdedwardsenterpriseone
8.97.2.2
jdedwardsenterpriseone
8.98.0.1
oraclepeoplesoft_enterprise
8.97.2.2
oraclepeoplesoft_enterprise
8.98.0.1
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/32291
http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
http://www.securitytracker.com/id?1021055
http://www.vupen.com/english/advisories/2008/2825
https://exchange.xforce.ibmcloud.com/vulnerabilities/45906
http://secunia.com/advisories/32291
http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
http://www.securitytracker.com/id?1021055
http://www.vupen.com/english/advisories/2008/2825
https://exchange.xforce.ibmcloud.com/vulnerabilities/45906