Critical Alert 1 Active Exploit Detected Today

CVE-2026-35273 Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability →
Powered by CVE Watchtower
×
June 14, 2026

CVE Watchtower


← Back to CVE List

CVE-2026-0490NVD

Vulnerability Summary

SAP BusinessObjects BI Platform allows an unauthenticated attacker to craft a specific network request to the trusted endpoint that breaks the authentication, which prevents the legitimate users from accessing the platform. As a result, it has a high impact on the availability but no impact on the confidentiality and integrity.
Severity Level
HIGH(7.5)
Published Date
Feb 10, 2026
Last Modified
Feb 17, 2026
Exploitation Status
????
EPSS Score (30-Day)
0.11%Probability
Root Weakness (CWE)
CWE-862: Missing Authorization β†—
The software does not perform an authorization check when an actor attempts to access a resource or perform an action.
CVSS v3.1 Base Metrics
Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged
ConfidentialityNone
IntegrityNone
AvailabilityHigh

External References