CNNVD-202601-3118 Information

Jan 20, 2026 cve

CNNVD ID

CNNVD-202601-3118

CVE-2026-21961

  • CNNVD Published: 2026-01-20

Description (Chinese)

Oracle PeopleSoft是美国甲骨文(Oracle)公司的一套企业人力资本管理解决方案。该产品提供了人力资本管理、财务管理、供应商关系管理等功能。PeopleSoft Enterprise HCM Human Resources是其中的一个人力资源管理组件。 Oracle PeopleSoft的PeopleSoft Enterprise HCM Human Resources 9.2版本存在安全漏洞,该漏洞源于未经验证的攻击者可通过HTTP网络访问进行攻击,可能导致未经授权的数据更新、插入、删除和读取。

Description (English)

Oracle PeopleSoft is an enterprise human capital management solution for Oracle. The product provides human capital management, financial management and supplier relationship management functions. PeopleSoft Enterprise HCM Human Resources Management is one of the human resources management components. Version 9.2 of the PeopleSoft Enterprise HCM Human Resources version of Oracle PeopleSoft contains a security loophole, which stems from unverified attackers’ access to the HTTP network, which may lead to unauthorized data updating, insertion, deletion and reading.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

甲骨文

Published

2026-01-20

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/cve-2026-21961 https://www.oracle.com/security-alerts/cpujan2026.html

Patch

https://www.oracle.com/security-alerts/cpujan2026.html

Share on: