CVE-2024-21097

Name of the Vulnerable Software and Affected Versions: PeopleSoft Enterprise PeopleTools versions 8.59 through 8.61

Description: The issue exists due to insufficient input validation in the Security component of Oracle PeopleSoft Enterprise PeopleTools. Exploitation of this issue may allow a remote attacker to disclose protected information. Successful attacks can result in unauthorized access to critical data or complete access to all accessible data in PeopleSoft Enterprise PeopleTools.

Recommendations: For versions 8.59 through 8.61, update to a version that includes the fix for this issue to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.