VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 14, 2010· Updated Apr 29, 2026

CVE-2010-3539

CVE-2010-3539

Description

Unspecified vulnerability in the PeopleSoft Enterprise FMS - GL component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2010-3538.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Unspecified vulnerability in PeopleSoft Enterprise FMS - GL allows remote authenticated users to impact confidentiality and integrity.

Vulnerability

The vulnerability resides in the PeopleSoft Enterprise FMS - GL component of Oracle PeopleSoft and JDEdwards Suite. Affected versions include 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6. The exact nature of the flaw is unspecified, but it is remotely exploitable by authenticated users and affects data confidentiality and integrity [1].

Exploitation

An attacker must have valid authentication credentials to the PeopleSoft system. The specific attack vectors are not disclosed in available references, but the vulnerability is remotely exploitable without requiring additional privileges beyond standard user access [1].

Impact

Successful exploitation could lead to unauthorized disclosure of sensitive information (confidentiality) and unauthorized modification of data (integrity). The impact on availability is not mentioned in the available references [1].

Mitigation

Oracle addressed this vulnerability in the October 2010 Critical Patch Update. Users should apply the relevant patches provided by Oracle for their affected versions. No workarounds are documented. The vulnerability is not listed on CISA's Known Exploited Vulnerabilities Catalog [1].

References
  1. Oracle Updates for Multiple Vulnerabilities | CISA

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Oracle Corporation/Peoplesoft And Jdedwards Product Suite3 versions
    cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.9:bundle38:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:8.9:bundle38:*:*:*:*:*:*
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:9.0:bundle31:*:*:*:*:*:*
    • cpe:2.3:a:oracle:peoplesoft_and_jdedwards_product_suite:9.1:bundle6:*:*:*:*:*:*
  • Oracle Corporation/Peoplesoft Enterprise Fmsllm-fuzzy
    Range: 8.9 Bundle #38, 9.0 Bundle #31, 9.1 Bundle #6

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.