PT-2013-1578 · Oracle · Peoplesoft Products+1

Published

2013-01-17

Updated

2013-10-11

CVE-2012-3192

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Oracle PeopleSoft Products versions 8.51 through 8.52

Description The issue affects the integrity of the system, related to the Rich Text Editor (RTE) component in the PeopleSoft PeopleTools. It allows remote authenticated users to exploit the vulnerability.

Recommendations For versions 8.51 and 8.52, consider restricting access to the Rich Text Editor (RTE) component until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2012-3192

Affected Products

Peoplesoft Products

Peopletools

PT-2013-1578 · Oracle · Peoplesoft Products+1

CVE-2012-3192

Related Identifiers

Affected Products

References · 3