Peoplesoft Enterprise Hcm Human Resources

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2026-21961 MEDIUM This Month

Unauthenticated attackers can exploit a cross-site request forgery vulnerability in Oracle PeopleSoft Enterprise HCM Human Resources 9.2 through the Company Directory/Org Chart Viewer component to read, modify, or delete sensitive employee data via HTTP with user interaction. The vulnerability requires a victim to click a malicious link but impacts multiple PeopleSoft products and modules beyond the initial target. No patch is currently available for this medium-severity issue (CVSS 6.1).

Oracle Peoplesoft Enterprise Hcm Human Resources

NVD

CVSS 3.1

6.1

EPSS

0.0%

CVE-2026-21961

EPSS 0% CVSS 6.1

MEDIUM This Month

Unauthenticated attackers can exploit a cross-site request forgery vulnerability in Oracle PeopleSoft Enterprise HCM Human Resources 9.2 through the Company Directory/Org Chart Viewer component to read, modify, or delete sensitive employee data via HTTP with user interaction. The vulnerability requires a victim to click a malicious link but impacts multiple PeopleSoft products and modules beyond the initial target. No patch is currently available for this medium-severity issue (CVSS 6.1).

Oracle Peoplesoft Enterprise Hcm Human Resources

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy