Vulnerability in PeopleSoft Enterprise PT PeopleTools by Oracle
CVE-2026-35279

8.1HIGH

Key Information:

Vendor

Oracle

Vendor
CVE Published:
16 June 2026

What is CVE-2026-35279?

A security flaw exists in Oracle's PeopleSoft Enterprise PT PeopleTools, specifically within the Performance Monitor component. This vulnerability allows an unauthenticated attacker with HTTP network access to potentially compromise the system. Exploiting this flaw could enable an attacker to take control of the PeopleSoft Enterprise PT PeopleTools application, affecting the confidentiality, integrity, and availability of the system. Users of supported versions 8.61 and 8.62 should take immediate action to mitigate risks associated with this vulnerability.

Affected Version(s)

PeopleSoft Enterprise PT PeopleTools 8.61

PeopleSoft Enterprise PT PeopleTools 8.62

References

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.