PT-2025-29600 · Oracle · Peoplesoft 8.61+2
Published
2025-07-15
·
Updated
2025-07-25
·
CVE-2025-30748
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle PeopleSoft versions 8.60
Oracle PeopleSoft versions 8.61
Oracle PeopleSoft versions 8.62
Description
A vulnerability exists within the PeopleSoft Enterprise PeopleTools component (PIA Core Technology) that allows an unauthenticated attacker with network access via HTTP to compromise the system. Successful exploitation requires human interaction and may impact additional products. Successful attacks can result in unauthorized data modification, insertion, deletion, and read access.
Recommendations
For versions 8.60, apply the necessary security measures to prevent unauthorized access and data manipulation.
For versions 8.61, apply the necessary security measures to prevent unauthorized access and data manipulation.
For versions 8.62, apply the necessary security measures to prevent unauthorized access and data manipulation.
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Peoplesoft 8.60
Peoplesoft 8.61
Peoplesoft 8.62