CVE-2014-6460
First published: Wed Oct 15 2014(Updated: )
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52, 8.53, and 8.54 allows remote authenticated users to affect confidentiality and integrity via vectors related to QUERY.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle PeopleSoft Products | =8.52 | |
| Oracle PeopleSoft Products | =8.53 | |
| Oracle PeopleSoft Products | =8.54 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-6460?
CVE-2014-6460 is considered to have a medium severity due to its potential impact on confidentiality and integrity.
How do I fix CVE-2014-6460?
To fix CVE-2014-6460, it is recommended to apply the appropriate patch provided by Oracle for PeopleSoft Products versions 8.52, 8.53, and 8.54.
Who is affected by CVE-2014-6460?
CVE-2014-6460 affects remote authenticated users of Oracle PeopleSoft Products versions 8.52, 8.53, and 8.54.
What components of PeopleSoft are impacted by CVE-2014-6460?
The vulnerability in CVE-2014-6460 specifically impacts the PeopleTools component of Oracle PeopleSoft Products.
What vectors are related to CVE-2014-6460?
CVE-2014-6460 relates to vectors that can affect the confidentiality and integrity of the system through QUERY capabilities.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle peoplesoft products
- version/oracle peoplesoft products/8.52
- version/oracle peoplesoft products/8.53
- version/oracle peoplesoft products/8.54