Oracle PeopleSoft HCM Global Payroll Core Unauthorized Data Access Vulnerability

Vulnerability

A vulnerability exists in Oracle PeopleSoft Enterprise HCM Global Payroll Core, specifically in the Global Payroll for Core component, affecting versions 9.2.51 and 9.2.52. This vulnerability allows low-privileged attackers with network access via HTTP to compromise the application. Successful exploitation could lead to unauthorized creation, deletion, or modification of critical data, as well as unauthorized access to all data accessible within PeopleSoft Enterprise HCM Global Payroll Core.

Impact

Exploitation of this vulnerability could result in unauthorized access to critical data or complete access to all data within PeopleSoft Enterprise HCM Global Payroll Core, along with the ability to unauthorizedly create, delete, or modify critical data.

Added: Jul 15, 2025, 10:44 PM

Updated: Jul 15, 2025, 10:44 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle PeopleSoft HCM Global Payroll Core Unauthorized Data Access Vulnerability

Vulnerability

Impact

Affected Products

Oracle PeopleSoft Enterprise HCM Global Payroll Core

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating