Learn about CVE-2018-2838, a vulnerability in PeopleSoft Enterprise PRTL Interaction Hub version 9.1. Unauthorized access and data compromise risk. Find mitigation steps here.
A vulnerability has been identified in the PeopleSoft Enterprise PRTL Interaction Hub component of Oracle PeopleSoft Products version 9.1, allowing unauthorized access and potential data compromise.
Understanding CVE-2018-2838
This CVE involves a security flaw in the PeopleSoft Enterprise PRTL Interaction Hub, impacting confidentiality and integrity.
What is CVE-2018-2838?
Vulnerability in PeopleSoft Enterprise PRTL Interaction Hub (subcomponent: EPPCM_HIER_TOP) version 9.1
Allows unauthenticated attackers via HTTP to compromise the system
Successful attacks require human interaction
Can lead to unauthorized data access and manipulation
The Impact of CVE-2018-2838
Unauthorized access to update, insert, or delete data in the affected system
Unauthorized read access to a subset of accessible data
CVSS 3.0 Base Score: 6.1 (Confidentiality and Integrity impacts)