Oracle University DailyIndependent daily briefing for Oracle learning, cloud, database, Java and enterprise technology news
Security

CISA Warns of Oracle PeopleSoft 0-Day Vulnerability Exploited in Ransomware Attacks

CISA has added a critical Oracle PeopleSoft vulnerability, tracked as CVE-2026-35273, to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation in the wild. The flaw affects Oracle PeopleSoft Enterprise PeopleTools and enables unauthenticated attackers to gain full control

External source CyberSecurityNews 17 Jun 2026, 5:41 pm 1 min brief
Security coverage from CyberSecurityNews.

Brief summary

What this story is about

CISA has added a critical Oracle PeopleSoft vulnerability, tracked as CVE-2026-35273, to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation in the wild. The flaw affects Oracle PeopleSoft Enterprise PeopleTools and enables unauthenticated attackers to gain full control

educationhigher educationinternet security

Why it matters

Reader takeaways

  • Prioritize whether the item affects internet-facing systems, databases, middleware, or identity infrastructure.
  • Map the source item to your next patch window and document owners before remediation starts.
  • Keep the original advisory link because patch details can change after publication.
Read the original source

SEO context

Topic and keyword map

This brief is filed under Oracle security alerts and Critical Patch Update watch.

educationhigher educationinternet securityOracle Critical Patch UpdateOracle security alertsOracle CVEDBA patchingsecurity advisories

Related briefs

Oracle EcosystemMassive password-stealing attack hits 75k Fortinet firewallsOracle EcosystemFortiBleed Attack Exposes Fortinet Firewall Credentials in 194 CountriesSecurityKodak Confirms Data Breach as ShinyHunters Threatens Leak of 2.2M RecordsOracle EcosystemFortiBleed - 70,000+ Fortinet Firewalls Compromised in Massive Exploitation Attack