https://vulnerability.circl.lu/sightings/feed 2026-06-14T22:52:21.656806+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/47ea8d8b-4964-465c-9ba5-a55cfc3e8894/export 2026-06-14T22:52:21.662424+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "47ea8d8b-4964-465c-9ba5-a55cfc3e8894", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/cyberlensai.bsky.social/post/3mo6dxeu7q62l", "content": "CVE watch: ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach...\n\nCheck exposure, dependency, and agent/tool access before panic-patching. Inventory beats vibes.\n\nSource: thehackernews.com\nhttps://thehackernews.com/2026/06/shinyhunters-exploits-oracle-peoplesoft.html", "creation_timestamp": "2026-06-13T13:22:04.649247Z"} 2026-06-13T13:22:04.649247+00:00 https://vulnerability.circl.lu/sighting/afaf05b9-791d-4087-9a58-a39471626092/export 2026-06-14T22:52:21.662344+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "afaf05b9-791d-4087-9a58-a39471626092", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mo6m2udwv72o", "content": "\ud83d\udea8 URGENT: Oracle issues an emergency patch for a critical PeopleSoft zero-day (CVE-2026-35273) actively exploited by the ShinyHunters group. The RCE flaw is being used in data theft attacks, mainly targeting universities. #ZeroDay #Oracle #PeopleSof...\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-06-13T15:49:19.897143Z"} 2026-06-13T15:49:19.897143+00:00 https://vulnerability.circl.lu/sighting/d72b561d-feef-4fa8-8dd9-793934dd4167/export 2026-06-14T22:52:21.662265+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "d72b561d-feef-4fa8-8dd9-793934dd4167", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35273", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116743576032057932", "content": "\ud83d\udcf0 Oracle Rushes Emergency Patch for PeopleSoft Zero-Day Exploited by ShinyHunters\n\ud83d\udea8 URGENT: Oracle issues an emergency patch for a critical PeopleSoft zero-day (CVE-2026-35273) actively exploited by the ShinyHunters group. The RCE flaw is being used in data theft attacks, mainly targeting universities. #ZeroDay #Oracle #PeopleSof...\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/oracle-issues-emergency-patch-for-peoplesoft-zero-day-cve-2026-35273/?u\u2026", "creation_timestamp": "2026-06-13T15:53:12.392170Z"} 2026-06-13T15:53:12.392170+00:00 https://vulnerability.circl.lu/sighting/ef26bbb3-f0ff-41cb-bad0-03422cbe4f3e/export 2026-06-14T22:52:21.662191+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ef26bbb3-f0ff-41cb-bad0-03422cbe4f3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mo6taozsqp2g", "content": "\ud83d\udee0\ufe0f TECHNICAL EXPLOIT PLAYBOOK: ORACLE PEOPLESOFT CVE-2026-35273 CONTANMENT: For the engineering frontline, the CISA KEV listing above requires an immediate shift from standard patching intervals to active threat hunting. This critical missing authentication flaw within the UEM component provides\u2026", "creation_timestamp": "2026-06-13T17:55:43.983728Z"} 2026-06-13T17:55:43.983728+00:00 https://vulnerability.circl.lu/sighting/50b720e6-e1e0-48dd-9605-154c36e6b528/export 2026-06-14T22:52:21.662116+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "50b720e6-e1e0-48dd-9605-154c36e6b528", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/washingtonhorizon.com/post/3mo767pzjil2y", "content": "ShinyHunters exploited a critical Oracle PeopleSoft zero-day (CVE-2026-35273) for two weeks undetected, hitting ~100 organizations and leaking gigabytes of student data. A mitigation exists, but no full patch yet. washingtonhorizon.com/critical-peo...", "creation_timestamp": "2026-06-13T21:12:02.746579Z"} 2026-06-13T21:12:02.746579+00:00 https://vulnerability.circl.lu/sighting/06f6424a-0c2d-4258-b520-1cdedd785018/export 2026-06-14T22:52:21.662041+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "06f6424a-0c2d-4258-b520-1cdedd785018", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3moaf5pa6he2w", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-35273\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nVulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Updates Environment Management). Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticate", "creation_timestamp": "2026-06-14T08:48:50.173134Z"} 2026-06-14T08:48:50.173134+00:00 https://vulnerability.circl.lu/sighting/d9a8bf6d-b2db-4c0d-9119-cf928f5b4566/export 2026-06-14T22:52:21.661955+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "d9a8bf6d-b2db-4c0d-9119-cf928f5b4566", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/sen-perimetered.bsky.social/post/3moau4frt6g2k", "content": "CVE-2026-35273 \u2014 Oracle PeopleSoft. CISA KEV, deadline Sunday June 15.\n\nMissing auth check. Unauthenticated HTTP \u2192 full takeover. ShinyHunters already in, targeting HR, payroll, financials.\n\nInternet-facing PeopleSoft: patch or isolate before Sunday.", "creation_timestamp": "2026-06-14T13:16:32.852884Z"} 2026-06-14T13:16:32.852884+00:00 https://vulnerability.circl.lu/sighting/87e43bbc-f80f-4a6f-b845-ed2c84fd98bc/export 2026-06-14T22:52:21.661881+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "87e43bbc-f80f-4a6f-b845-ed2c84fd98bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/yabhpodcast.bsky.social/post/3mobeqlnmsq2n", "content": "\ud83d\udea8 ShinyHunters hit 100+ orgs with Oracle PeopleSoft zero-day (CVE-2026-35273) \u2014 2/3 are universities, no patch yet. Plus: MS record Patch Tuesday (200 flaws, 6 0-days) & CISA adds Magento RCE to KEV list.\nListen: https://youtu.be/Uu348vh3BlI\n#YABH #InfoSec #ZeroDay", "creation_timestamp": "2026-06-14T18:14:10.405315Z"} 2026-06-14T18:14:10.405315+00:00 https://vulnerability.circl.lu/sighting/112a777c-0b25-4fc0-b048-09cf0e7abcdb/export 2026-06-14T22:52:21.661778+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "112a777c-0b25-4fc0-b048-09cf0e7abcdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/eclipsecybernexus.bsky.social/post/3mobeqlojjb25", "content": "\ud83d\udea8 ShinyHunters hit 100+ orgs with Oracle PeopleSoft zero-day (CVE-2026-35273) \u2014 2/3 are universities, no patch yet. Plus: MS record Patch Tuesday (200 flaws, 6 0-days) & CISA adds Magento RCE to KEV list.\nListen: https://youtu.be/Uu348vh3BlI\n#YABH #InfoSec #ZeroDay", "creation_timestamp": "2026-06-14T18:14:11.041344Z"} 2026-06-14T18:14:11.041344+00:00 https://vulnerability.circl.lu/sighting/b23b849a-f666-46f7-919a-1f280bca0eac/export 2026-06-14T22:52:21.660232+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "b23b849a-f666-46f7-919a-1f280bca0eac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/professorcyberrisk.bsky.social/post/3mobeqmtmp62q", "content": "\ud83d\udea8 ShinyHunters hit 100+ orgs with Oracle PeopleSoft zero-day (CVE-2026-35273) \u2014 2/3 are universities, no patch yet. Plus: MS record Patch Tuesday (200 flaws, 6 0-days) & CISA adds Magento RCE to KEV list.\nListen: https://youtu.be/Uu348vh3BlI\n#YABH #InfoSec #ZeroDay", "creation_timestamp": "2026-06-14T18:14:11.956353Z"} 2026-06-14T18:14:11.956353+00:00