VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 14, 2010· Updated Apr 29, 2026

CVE-2010-3538

CVE-2010-3538

Description

Unspecified vulnerability in the PeopleSoft Enterprise FMS - GL component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2010-3539.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An unspecified vulnerability in PeopleSoft Enterprise FMS - GL allows authenticated users to compromise confidentiality and integrity.

Vulnerability

An unspecified vulnerability exists in the PeopleSoft Enterprise FMS - GL (General Ledger) component of Oracle PeopleSoft and JDEdwards Suite. The affected versions are 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6. The exact nature of the flaw and the vectors required to trigger it are not disclosed in the available references [1].

Exploitation

Exploitation requires a remote authenticated user. No further details about the necessary privileges, network position, or specific steps are provided in the public sources [1]. The vulnerability is distinct from CVE-2010-3539.

Impact

Successful exploitation can affect the confidentiality and integrity of the affected system. The impact on availability is not mentioned. The attacker may gain unauthorized access to sensitive information or modify data within the PeopleSoft FMS - GL component [1].

Mitigation

Oracle addressed this vulnerability as part of the October 2010 Critical Patch Update (CPU). The fixed versions are included in the corresponding CPU bundles for the affected releases. No workarounds are documented in the available references [1]. Users should apply the CPU patches provided by Oracle.

References
  1. Oracle Updates for Multiple Vulnerabilities | CISA

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Oracle Corporation/Peoplesoft And Jdedwards Product Suite3 versions
    cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.9:bundle38:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.9:bundle38:*:*:*:*:*:*
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:9.0:bundle31:*:*:*:*:*:*
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:9.1:bundle6:*:*:*:*:*:*
  • Oracle Corporation/Peoplesoft Enterprise Fmsllm-fuzzy
    Range: 8.9 Bundle #38, 9.0 Bundle #31, 9.1 Bundle #6

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.