VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 14, 2010· Updated Apr 29, 2026

CVE-2010-3536

CVE-2010-3536

Description

Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An unspecified vulnerability in PeopleSoft Enterprise SCM allows remote authenticated users to affect confidentiality and integrity.

Vulnerability

The vulnerability exists in the PeopleSoft Enterprise SCM component of Oracle PeopleSoft and JDEdwards Suite. Affected versions include 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 [1]. The exact nature of the flaw is unspecified, but it is remotely exploitable by authenticated users.

Exploitation

An attacker must have valid authentication credentials to the PeopleSoft system. The exploitation vector is unknown, but the vulnerability can be triggered remotely without requiring additional privileges beyond authentication [1].

Impact

Successful exploitation allows an attacker to compromise the confidentiality and integrity of the affected system. The impact does not include availability according to the description.

Mitigation

Oracle released a Critical Patch Update in October 2010 that addresses this vulnerability. Users should apply the appropriate patches from Oracle as specified in the advisory [1]. No workarounds are documented.

References
  1. Oracle Updates for Multiple Vulnerabilities | CISA

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Oracle Corporation/Peoplesoft And Jdedwards Product Suite3 versions
    cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.9:bundle38:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.9:bundle38:*:*:*:*:*:*
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:9.0:bundle31:*:*:*:*:*:*
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:9.1:bundle6:*:*:*:*:*:*
  • Oracle Corporation/Peoplesoft Enterprise Scmllm-fuzzy
    Range: 8.9 Bundle #38, 9.0 Bundle #31, 9.1 Bundle #6

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.