This is not actually the reason Oracle stock is down today. But it probably didn't help.
Anyway if you use PeopleSoft, please patch ASAP.
Last Updated: 2026-06-11T22:11:52Z (UTC) What’s Happening CVE-2026-35273, a CVSSv3 9.8 severity vulnerability allows “takeover” or “code execution.” No details on mechanism as yet. https://www.oracle.com/security-alerts/alert-cve-2026-35273.html The CVE listing shows the CWE as CWE-308, or “Missing Authentication for Critical Function.” So presumably an auth bypass or Broken Function Level Authorization on an API endpoint. The Register reports that ShinyHunters credit this vulnerability for ...
