Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology Unauthenticated Data Exposure Vulnerability

Vulnerability

An unauthenticated vulnerability allowing unauthorized read access to certain data within PeopleSoft Enterprise PeopleTools has been identified. This issue affects versions 8.60, 8.61, and 8.62, and resides in the PIA Core Technology component. The vulnerability is easily exploitable by an attacker with network access via HTTP, but requires human interaction from a third party to be successful.

Impact

Exploitation of this vulnerability could lead to unauthorized read access of a subset of data within PeopleSoft Enterprise PeopleTools.

Added: Jul 15, 2025, 11:26 PM

Updated: Jul 15, 2025, 11:26 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

6.0

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

6.0

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology Unauthenticated Data Exposure Vulnerability

Vulnerability

Impact

Affected Products

Oracle PeopleSoft Enterprise PeopleTools

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating