// Oracle HealthCRITICAL
Oracle PeopleSoft Enterprise PeopleTools versions 8.61 and 8.62 contain a critical remote code execution vulnerability (CVE-2026-35273) in the Updates Environment Management component. The vulnerability allows unauthenticated remote attackers to execute arbitrary code via HTTP. Exploitation is actively occurring in the wild; immediate patching is required.
- Remote Code Execution Vulnerability in Oracle PeopleSoft Enterpr(opens in a new tab)
- Censys Highlights Critical Oracle PeopleSoft Vulnerability and E(opens in a new tab)
- Oracle Warns PeopleSoft Customers After Critical Zero-Day Exploi(opens in a new tab)
- Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by Sh(opens in a new tab)
- ShinyHunters Exploits Oracle PeopleSoft Zero-Day CVE-2026-35273 (opens in a new tab)
- ShinyHunters extortion gang targets global universities through (opens in a new tab)
// Get alerts for Oracle Health