PT-2026-34087 · Oracle · Peoplesoft Enterprise Hcm Shared Components
Published
2026-04-21
·
Updated
2026-04-26
·
CVE-2026-22019
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle PeopleSoft PeopleSoft Enterprise HCM Shared Components version 9.2
Description
An issue exists in the Person Search component of PeopleSoft Enterprise HCM Shared Components. A low privileged attacker with network access via HTTP can compromise the system, though successful exploitation requires human interaction. This may result in unauthorized read, update, insert, or delete access to certain accessible data. The impact may extend beyond the affected component to other products.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Peoplesoft Enterprise Hcm Shared Components