CVE-2016-8296

Published: Oct 25, 2016Modified: May 6, 2026

7.6

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N

Exploitability: 2.3 / Impact: 4.7

Source: NVD

Description

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to LDAP.

Affected (2)

Products: Oracle: Peoplesoft Enterprise Peopletools

Oracle

1 product

Peoplesoft Enterprise Peopletools

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Peoplesoft Enterprise Peopletools	Version 8.54
Oracle Peoplesoft Enterprise Peopletools	Version 8.55

Related CWEs

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (6)

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Source: secalert_us@oracle.com

PatchVendor Advisory

http://www.securityfocus.com/bid/93691

Source: secalert_us@oracle.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037046

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/93691

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037046

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.