CNNVD-202510-2661 Information

Oct 21, 2025 cve

CNNVD ID

CNNVD-202510-2661

CVE-2025-53065

  • CNNVD Published: 2025-10-21

Description (Chinese)

Oracle PeopleSoft是美国甲骨文(Oracle)公司的一套企业人力资本管理解决方案。该产品提供了人力资本管理、财务管理、供应商关系管理等功能。PeopleSoft Enterprise PeopleTools是其中的一个支持转变企业管理、PeopleSoft软件的使用以及维护方式的工具和技术平台组件。 Oracle PeopleSoft的PeopleSoft Enterprise PeopleTools 8.60版本、8.61版本和8.62版本存在安全漏洞,该漏洞源于未经验证的攻击者可通过HTTP网络访问进行攻击,可能导致未经授权的数据访问和修改。

Description (English)

Oracle PeopleSoft is an enterprise human capital management solution for Oracle. The product provides human capital management, financial management and supplier relationship management functions. PeopleSoft Enterprise PeopleTools is one of the tools and technical platform components that supports the transformation of business management, the use of PeopleSoft software and the way it is maintained. PeopleSoft Enterprise PeopleTools 8.60, 8.61 and 8.62 of Oracle PeopleSoft have a security loophole, which stems from unverified attackers’ access to the HTTP network, which may lead to unauthorized data access and modification.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

甲骨文

Published

2025-10-21

Last Modified

2026-02-24

References

https://www.oracle.com/security-alerts/cpuoct2025.html https://access.redhat.com/security/cve/cve-2025-53065

Patch

https://www.oracle.com/security-alerts/cpuoct2025.html

Share on: