[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:oracle-addresses-peoplesoft-vulnerability-amid-reports-of-zero-day-attacks-mqb4c9vt":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":13,"action_required":16,"article_ids":17,"ioc_summary":19,"source_urls":20,"status":22,"expires_at":23,"created_at":24,"updated_at":25,"articles":26},"2a47cf1e-c114-433b-a8ae-e7c5ddb67072","Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks","oracle-addresses-peoplesoft-vulnerability-amid-reports-of-zero-day-attacks-mqb4c9vt","Oracle released an emergency advisory for CVE-2026-35273, a critical unauthenticated RCE in PeopleSoft PeopleTools 8.61 and 8.62. ShinyHunters has reportedly exploited this vulnerability across 300+ instances at 100+ organizations. Oracle released mitigations only, not a full patch, and active exploitation in the wild remains unconfirmed but credible.","critical","advisory",[12],"CVE-2026-35273",[14,15],"Oracle","PeopleSoft Enterprise PeopleTools","Immediately identify all PeopleSoft PeopleTools 8.61 and 8.62 instances in your environment. Apply Oracle's published mitigations now. Hunt for exploitation attempts against these versions by monitoring for suspicious web requests to PeopleSoft endpoints and unusual authentication patterns.",[18],"6d9bdd27-2c59-4652-9b2c-6e5bd21b390f",null,[21],"https:\u002F\u002Fwww.securityweek.com\u002Foracle-addresses-peoplesoft-vulnerability-amid-reports-of-zero-day-attacks\u002F","active","2026-06-14T16:06:02.649+00:00","2026-06-12T16:06:10.003079+00:00","2026-06-12T16:08:29.219369+00:00",[27],{"id":18,"title":6,"url":21}]