Critical Alert 1 Active Exploit Detected Today

CVE-2026-35273 Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability →
Powered by CVE Watchtower
×
June 13, 2026

CVE Watchtower


← Back to CVE List

CVE-2026-41972NVD

Vulnerability Summary

Path traversal vulnerability in the SMS app.Β Impact: Successful exploitation of this vulnerability may affect availability.
Severity Level
MEDIUM(5.4)
Published Date
Jun 9, 2026
Last Modified
Jun 9, 2026
Exploitation Status
????
EPSS Score (30-Day)
0.02%Probability
Root Weakness (CWE)
CWE-22: Path Traversal β†—
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory.
CVSS v3.1 Base Metrics
Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionRequired
ScopeUnchanged
ConfidentialityNone
IntegrityLow
AvailabilityLow

External References