CVE-2008-1830
CVE-2008-1830 is a critical-severity vulnerability in Jdedwards Enterpriseone with a CVSS 2.0 base score of 9.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Critical (CVSS 2.0 base score 9.0)
- EPSS exploit prediction: 2% (73rd percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Jdedwards Enterpriseone
- Published:
- Last modified:
Description
Unspecified vulnerability in the PeopleSoft HCM ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9 and 9.0 has unknown impact and remote attack vectors, aka PSE03.
Frequently asked questions
- What is CVE-2008-1830?
- Unspecified vulnerability in the PeopleSoft HCM ePerformance component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9 and 9.0 has unknown impact and remote attack vectors, aka PSE03.
- How severe is CVE-2008-1830?
- CVE-2008-1830 has a CVSS 2.0 base score of 9.0, rated critical severity.
- Is CVE-2008-1830 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (73rd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2008-1830?
- CVE-2008-1830 primarily affects Jdedwards Enterpriseone. In total, 4 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2008-1830?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
- When was CVE-2008-1830 published?
- CVE-2008-1830 was published on 2008-04-16 and last updated on 2026-06-16.
References
- http://secunia.com/advisories/29829
- http://secunia.com/advisories/29874
- http://www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html
- http://www.securityfocus.com/archive/1/491024/100/0/threaded
- http://www.securitytracker.com/id?1019855
- http://www.vupen.com/english/advisories/2008/1233/references
- http://www.vupen.com/english/advisories/2008/1267/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41858
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42067
Affected products (4)
- cpe:2.3:a:jdedwards:enterpriseone:8.9:*:*:*:*:*:*:*
- cpe:2.3:a:jdedwards:enterpriseone:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_hcm_eperformance:8.9:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_hcm_eperformance:9.0:*:*:*:*:*:*:*
More vulnerabilities in Jdedwards Enterpriseone
- CVE-2008-1828 — Critical (CVSS 9.0): Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards…
- CVE-2020-1967 — High (CVSS 7.5): Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash…
- CVE-2008-4000 — Medium (CVSS 6.4): Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne…
- CVE-2008-5452 — Medium (CVSS 5.5): Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Enterprise and JD Edwards…
- CVE-2008-5455 — Medium (CVSS 4.9): Unspecified vulnerability in the PeopleSoft Enterprise HRMS - ePerformance component in Oracle PeopleSoft Enterprise…
- CVE-2008-5451 — Medium (CVSS 4.0): Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards…