GHSA-h32f-9mwc-283m

GHSA-h32f-9mwc-283m PUBLISHED CVSS 6.5 MEDIUM

Vulnerability in the PeopleSoft Enterprise FIN Project Costing product of Oracle PeopleSoft (component: Projects). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Project Costing. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all PeopleSoft Enterprise FIN Project Costing accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).

Risk Scores

CVSS 3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Timeline

Apr 21, 2026 CVE Published
Apr 22, 2026 Security Advisory

References

https://nvd.nist.gov/vuln/detail/CVE-2026-34306 advisory
https://www.oracle.com/security-alerts/cpuapr2026.html url

Open in Interactive Console →