Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks. […]
Initial methods suggest attackers had likely mapped out Ivanti’s asset landscape upfront and acted quickly once the exploit became public.