Skip to main content
Mallory
Back to vulnerabilities
Unrated

Unauthorized data access/modification in Oracle PeopleSoft Enterprise PT PeopleTools WebLogic component

IdentifiersCVE-2026-35271

CVE-2026-35271 is a vulnerability in the WebLogic component of Oracle PeopleSoft Enterprise PT PeopleTools affecting supported versions 8.61 and 8.62. According to Oracle, it is difficult to exploit but can be reached by an unauthenticated attacker over the network via HTTP. Successful exploitation allows compromise of PeopleSoft Enterprise PT PeopleTools and, because the issue has scope change, may significantly impact additional products beyond the vulnerable component. The available advisory information does not disclose the specific vulnerable function or root cause, so a more precise technical characterization is currently not available.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation can result in unauthorized creation, deletion, or modification of critical data, or of all data accessible through PeopleSoft Enterprise PT PeopleTools. It can also result in unauthorized access to critical data or complete access to all PeopleSoft Enterprise PT PeopleTools-accessible data. Oracle rates the issue CVSS 3.1 8.7 with high confidentiality and integrity impact and no availability impact; the scope change indicates compromise may extend to additional connected or dependent products.

Mitigation

If you can’t patch tonight, do this now.

Until patches can be applied, reduce exposure by restricting or blocking network access and protocols required to reach the vulnerable HTTP interface, especially from untrusted networks. Limit unnecessary privileges and access to affected packages/components to only required users and systems. Oracle notes such workarounds may affect application functionality, should be validated in non-production first, and are not a substitute for patching.

Remediation

Patch, then assume compromise.

Apply Oracle's June 2026 Critical Security Patch Update for PeopleSoft Enterprise PT PeopleTools and move affected deployments to a vendor-fixed supported release. Oracle also recommends remaining on actively supported versions and upgrading unsupported releases so security patches are available. Where the deployment depends on related Oracle components, review and apply any relevant associated Oracle patches as advised by Oracle.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
OraclePeoplesoft Enterprise Pt Peopletoolsapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

2 sources tracked across advisories and community write-ups. News coverage will land here when it surfaces.

2 SOURCESView more in app

No news coverage yet. Advisories and community discussion only.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity1

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2026-35271
NVD
nvd.nist.gov/vuln/detail/CVE-2026-35271