CVE-2025-61750 is a vulnerability in Oracle Corporation's PeopleSoft Enterprise PeopleTools, specifically within the Query component, affecting versions 8.61 and 8.62. The flaw allows an attacker with low privileges and network access over HTTP to exploit the system to gain unauthorized read access to a subset of data accessible through PeopleSoft PeopleTools. The vulnerability is classified under CWE-200, indicating an information disclosure issue due to improper access control. The CVSS 3.1 base score is 4.3, reflecting a medium severity primarily due to confidentiality impact without affecting integrity or availability. The attack vector is network-based (AV:N), requiring low attack complexity (AC:L) and low privileges (PR:L), but no user interaction (UI:N). The scope remains unchanged (S:U), meaning the vulnerability affects only the vulnerable component. Although no known exploits are currently reported in the wild, the ease of exploitation combined with network accessibility makes this a notable risk. The vulnerability could allow attackers to read sensitive data that should otherwise be protected, potentially exposing business-critical or personal information. The absence of patches at the time of reporting necessitates immediate mitigation efforts by affected organizations to reduce exposure.

For European organizations, the unauthorized read access enabled by this vulnerability could lead to exposure of sensitive corporate data, employee information, or customer records stored within PeopleSoft systems. This could result in privacy violations under GDPR, reputational damage, and potential regulatory penalties. Since PeopleSoft is widely used in sectors such as government, education, and large enterprises across Europe, the impact could be significant if exploited. The confidentiality breach could facilitate further attacks or data leaks. However, the vulnerability does not allow data modification or system disruption, limiting the impact to information disclosure. Organizations with PeopleSoft instances exposed to untrusted networks or insufficiently segmented internal networks are at higher risk. The medium severity score suggests that while the threat is serious, it is not critical, but still warrants prompt attention to avoid escalation or chained attacks.

1. Restrict network access to PeopleSoft Enterprise PeopleTools interfaces, especially the Query component, by implementing strict firewall rules and network segmentation to limit exposure to trusted users only. 2. Monitor and audit PeopleSoft query logs for unusual or unauthorized access patterns that may indicate exploitation attempts. 3. Apply Oracle vendor patches or updates as soon as they become available for versions 8.61 and 8.62. 4. Enforce the principle of least privilege for PeopleSoft user accounts, ensuring that users have only the minimum necessary permissions to perform their roles. 5. Consider deploying Web Application Firewalls (WAF) with custom rules to detect and block suspicious HTTP requests targeting PeopleSoft Query endpoints. 6. Conduct regular security assessments and penetration tests focused on PeopleSoft environments to identify and remediate potential weaknesses. 7. Educate system administrators and security teams about this vulnerability to ensure timely detection and response. 8. If patching is delayed, consider temporarily disabling or restricting access to the vulnerable Query component where feasible.