Oracle Warns PeopleSoft Customers After Critical Zero-Day Exploited
ID: 0bace6ab-ee43-5204-ae4a-e974597ae9b2
STIX ID: report--0bace6ab-ee43-5204-ae4a-e974597ae9b2
Feed Name: TechRepublic Security
Threat Score
**Critical Oracle PeopleSoft zero-day (CVE-2026-35273) enabling unauthenticated RCE in versions 8.61/8.62 is being actively exploited in the wild; Google and Mandiant observed exploitation from May 27–June 9 affecting over 100 organizations (predominantly in education) and attribute the activity to ShinyHunters — Oracle has published mitigation guidance and affected customers are urged to apply updates, review logs, and assume potential compromise.**
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
