THREAT OPS › Threat News › Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)
Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)
<h2 style="direction: ltr;">Overview</h2><p style="direction: ltr;"><span style="font-size: undefined;">On June 10, 2026, Oracle published a </span><a href="https://www.oracle.com/security-alerts/alert-cve-2026-35273.html"><span style="font-size: undefined;">security alert</span></a><span style="font-size: undefined;"> for </span><a href="https://www.cve.org/CVERecord?id=CVE-2026-35273"><span styl
MITRE ATT&CK techniques
Indicators of compromise
- 50ac0ffbc9ecf4559949faa026a412c9bb57e81d3ae0714a4dcd25b4fec35105sha256
- f02a924c9ff92a8780ce812511341182c6b509d45bc59f3f7b522e37225d24fcsha256
- d83fdb9e53c5ff03c4cb0451ea1bebd79b53f29eadc1e2fa394c7af13a86ce2fsha256
- c7e9332731b06644fc73e0046a2a89eaa59b09f54250e9bd622467187351711fsha256
- 68257a6f9ff196179ec03624e849927f26599eb180a7c82e14ef5bc4e93bc309sha256
- 2ab684d93c1553fad87041b4dea97188a97e78589deee2a7bacff905564f3a35sha256
- CVE-2026-35273cve
- CVE-2013-3821cve
- CVE-2017-3548cve
- https://www.oracle.com/security-alerts/alert-cve-2026-35273.htmlurl
- https://www.cve.org/CVERecord?id=CVE-2026-35273url
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:Hurl
- https://success.trendmicro.com/en-US/solution/KA-0023679url
- https://www.cve.org/CVERecord?id=CVE-2013-3821url
- https://blog.lexfo.fr/oracle-peoplesoft-xxe-to-rce.htmlurl
- https://www.cve.org/CVERecord?id=CVE-2017-3548url
- https://meshcentral.com/url
- https://support.oracle.com/support/?documentId=CPU187url
- https://www.virustotal.com/gui/collection/50ac0ffbc9ecf4559949faa026a412c9bb57e81d3ae0714a4dcd25b4fec35105url
- 142.11.200.186ipv4
- 142.11.200.187ipv4
- 142.11.200.188ipv4
- 142.11.200.189ipv4
- 142.11.200.190ipv4
- 176.120.22.24ipv4
- azurenetfiles.netdomain