PT-2025-42956 · Unknown+1 · Opensearch Dashboards+1
Published
2025-10-21
·
Updated
2025-10-21
·
CVE-2025-53059
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle PeopleSoft versions 8.60 through 8.62
Description
A security issue exists in the PeopleSoft Enterprise PeopleTools product, specifically within the OpenSearch Dashboards component. A high-privileged attacker with network access via HTTP can compromise PeopleSoft Enterprise PeopleTools. Successful exploitation may lead to unauthorized access to critical data or complete access to all accessible data.
Recommendations
Update PeopleSoft Enterprise PeopleTools version 8.60 to a later version.
Update PeopleSoft Enterprise PeopleTools version 8.61 to a later version.
Update PeopleSoft Enterprise PeopleTools version 8.62 to a later version.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opensearch Dashboards
Peoplesoft Enterprise Peopletools