Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Oracle PeopleSoft PeopleTools zero-day RCE (CVE-2026-35273)

Vulnerability
First reported
Last updated
Happening score
H score 58
2 unique sources, 2 articles

Summary

Hide ▲

Oracle PeopleSoft PeopleTools CVE-2026-35273 is a critical zero-day RCE affecting versions 8.61 and 8.62. Oracle has released emergency mitigations while a patch is pending. The flaw was reported as actively exploited in ShinyHunters data-theft attacks.

Related Happenings

ShinyHunters Oracle PeopleSoft data theft from 300 instances

Data Leak
H score46 First: 11.06.2026 22:39 Last: 11.06.2026 22:39 Sources 1

How related: Using this flaw, the threat actor allegedly stole data from 300 instances for over 100 organizations.

About this happening: The **ShinyHunters** data-leak event against **Oracle PeopleSoft** instances exposed data from **300 instances** across **100+ organizations**, expanding the risk of theft-driven...

Open Happening

ShinyHunters Oracle PeopleSoft data theft and extortion campaign

Campaign
H score58 First: 10.06.2026 21:31 Last: 10.06.2026 21:31 Sources 1

How related: The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private.

About this happening: **ShinyHunters**/**UNC6240** exploited **CVE-2026-35273**, a **zero-day** in **Oracle PeopleSoft Enterprise PeopleTools**, between **May 27 and June 9** to break into enterprise s...

Latest development: 11.06.2026 23:29

Google's Mandiant says the UNC6240 cluster used CVE-2026-35273, a PeopleSoft Enterprise PeopleTools zero-day, to break into Oracle PeopleSoft systems and steal data between May 27 and June 9. Oracle did not publish its advisory until June 10, so the flaw remained unpatched throughout the activity window.

Open Happening

CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551

Public Sector Action
H score49 First: 04.02.2026 07:50 Last: 04.02.2026 07:50 Sources 1

About this happening: **CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...

Open Happening

The Washington Post employee and contractor data leak

Data Leak
H score59 First: 13.11.2025 18:00 Last: 13.11.2025 18:00 Sources 1

About this happening: The **Washington Post** is notifying **nearly 10,000 employees and contractors** after **personal and financial data** was exposed, creating **identity-theft and fraud risk**. Att...

Open Happening

Oracle EBS zero-day exploitation wave (dozens of victims)

Exploitation Wave
H score32 First: 12.11.2025 17:30 Last: 12.11.2025 17:30 Sources 1

About this happening: A **multi-victim Oracle E-Business Suite (EBS) exploitation wave** is affecting **dozens of victims**, with the total possibly exceeding **100**. The activity is tied to **zero-da...

Open Happening

Timeline

  1. 11.06.2026 22:39 2 articles · 2h ago

    ShinyHunters targets Oracle PeopleSoft in data theft attacks

    Exploitation Observed

    ShinyHunters targeted Oracle PeopleSoft instances in a wave of data theft attacks and claimed to use a gadget chain of old and zero-day flaws to breach PeopleSoft systems. The attacks were said to affect 300 instances across more than 100 organizations, and ransom notes were reportedly left on compromised systems.

    Show sources
    Open in new tab
  2. 11.06.2026 22:39 2 articles · 2h ago

    Oracle issues emergency mitigations for CVE-2026-35273 in PeopleSoft PeopleTools

    Initial Disclosure

    Oracle issued a Security Alert for CVE-2026-35273 in Oracle PeopleSoft PeopleTools, a critical zero-day with CVSS 9.8 that is remotely exploitable without authentication and can lead to remote code execution. Oracle confirmed affected PeopleSoft Enterprise PeopleTools versions 8.61 and 8.62, released emergency mitigations, and said a patch is coming soon.

    Show sources
    Open in new tab