UpTrajectory Review

Oracle has issued a warning regarding a serious vulnerability in its PeopleSoft software, which has already been exploited by hackers to compromise over 100 organizations. The flaw, identified as CVE-2026-35273, has a high severity score and can be accessed remotely without authentication, posing a significant risk to businesses that rely on this software. As of now, Oracle has not provided a patch to address the issue.

For small business owners using Oracle PeopleSoft, this vulnerability is a pressing concern. The lack of a patch means that organizations must take immediate action to secure their systems, possibly by implementing additional security measures or considering alternative solutions. It's crucial to stay informed about updates from Oracle and to assess your current security protocols to mitigate potential risks. This situation highlights the importance of proactive cybersecurity strategies, especially when relying on third-party software.

The flaw, CVE-2026-35273, carries a CVSS score of 9.8 and can be exploited over the internet without any authentication.

“The flaw, CVE-2026-35273, carries a CVSS score of 9.8 and can be exploited over the internet without any authentication.” — The Next Web

Takeaway: Small businesses using Oracle PeopleSoft must urgently assess their security measures in light of this critical vulnerability.