Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology Unauthenticated Data Access Vulnerability

A vulnerability exists in Oracle PeopleSoft Enterprise PeopleTools, specifically in the PIA Core Technology component, affecting versions 8.60, 8.61, and 8.62. This easily exploitable vulnerability allows an unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful exploitation requires human interaction from a third party. While the vulnerability is contained within PeopleSoft Enterprise PeopleTools, its effects may extend to other products. Exploitation of this vulnerability could lead to unauthorized read access to certain subsets of PeopleSoft Enterprise PeopleTools data, as well as unauthorized update, insert, or delete access to other accessible data.

Impact

Exploitation of this vulnerability could result in unauthorized data manipulation, allowing for unauthorized updates, inserts, or deletions of accessible data within PeopleSoft Enterprise PeopleTools. Additionally, it could enable unauthorized reading of certain subsets of accessible data.