CVE-2024-7096

MEDIUM EPSS 44.0%
Published May 30, 20251y ago · Modified Jun 17, 20262w ago
5.4 CVSS 3.1
Medium
Find Similar
Published May 30, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

A privilege escalation vulnerability exists in multiple WSO2 products due to a business logic flaw in SOAP admin services. A malicious actor can create a new user with elevated permissions only when all of the following conditions are met: * SOAP admin services are accessible to the attacker. * The deployment includes an internally used attribute that is not part of the default WSO2 product configuration. * At least one custom role exists with non-default permissions. * The attacker has knowledge of the custom role and the internal attribute used in the deployment. Exploiting this vulnerability allows malicious actors to assign higher privileges to self-registered users, bypassing intended access control mechanisms.

CVSS Details

Base Score
5.4
Exploitability
2.8
Impact
2.5
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality Low
Integrity Low
Availability None

Threat Intelligence

EPSS Exploit Probability
44.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-863 Incorrect Authorization Authorization

Affected Products 41

VendorProductVersionRange
wso2api_manager2.0.0any
wso2api_manager2.1.0any
wso2api_manager2.2.0any
wso2api_manager2.5.0any
wso2api_manager2.6.0any
wso2api_manager3.0.0any
wso2api_manager3.1.0any
wso2api_manager3.2.0any
wso2api_manager3.2.1any
wso2api_manager4.0.0any
wso2api_manager4.1.0any
wso2api_manager4.2.0any
wso2api_manager4.3.0any
wso2identity_server5.2.0any
wso2identity_server5.3.0any
wso2identity_server5.4.0any
wso2identity_server5.4.1any
wso2identity_server5.5.0any
wso2identity_server5.6.0any
wso2identity_server5.7.0any
wso2identity_server5.8.0any
wso2identity_server5.9.0any
wso2identity_server5.10.0any
wso2identity_server5.11.0any
wso2identity_server6.0.0any
wso2identity_server6.1.0any
wso2identity_server7.0.0any
wso2identity_server_as_key_manager5.3.0any
wso2identity_server_as_key_manager5.5.0any
wso2identity_server_as_key_manager5.6.0any
wso2identity_server_as_key_manager5.7.0any
wso2identity_server_as_key_manager5.9.0any
wso2identity_server_as_key_manager5.10.0any
wso2open_banking_am1.3.0any
wso2open_banking_am1.4.0any
wso2open_banking_am1.5.0any
wso2open_banking_am2.0.0any
wso2open_banking_iam2.0.0any
wso2open_banking_km1.3.0any
wso2open_banking_km1.4.0any
wso2open_banking_km1.5.0any

References 1

  • security.docs.wso2.com https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2024/WSO2-2024-3573/
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.