PT-2021-21006 · Oracle · Peoplesoft Enterprise Cs Campus Community

Published

2021-10-20

Updated

2021-10-26

CVE-2021-35606

CVSS v3.1

5.7

Medium

Vector

AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: PeopleSoft Enterprise CS Campus Community versions 9.0 through 9.2

Description: The issue allows a low-privileged attacker with access to the physical communication segment attached to the hardware where the PeopleSoft Enterprise CS Campus Community executes to compromise it. Successful attacks can result in unauthorized access to critical data or complete access to all accessible data.

Recommendations: For versions 9.0 and 9.2, update to a version that includes a fix for this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-35606

Affected Products

Peoplesoft Enterprise Cs Campus Community

PT-2021-21006 · Oracle · Peoplesoft Enterprise Cs Campus Community

CVE-2021-35606

Related Identifiers

Affected Products

References · 4