Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2025-9804

🗓️ 16 Oct 2025 12:33:45Reported by WSO2Type 
cve
 cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 9 Views

Improper access control in internal SOAP Admin Services and System REST APIs enables actions by low-privilege users.

Related
Detection
Affected
Refs
Social
NVD
Node
wso2api_control_planeMatch4.5.0-
OR
wso2api_managerMatch2.0.0
OR
wso2api_managerMatch2.1.0
OR
wso2api_managerMatch2.2.0
OR
wso2api_managerMatch2.5.0
OR
wso2api_managerMatch2.6.0
OR
wso2api_managerMatch3.0.0
OR
wso2api_managerMatch3.1.0
OR
wso2api_managerMatch3.2.0
OR
wso2api_managerMatch3.2.1
OR
wso2api_managerMatch4.0.0
OR
wso2api_managerMatch4.1.0-
OR
wso2api_managerMatch4.2.0-
OR
wso2api_managerMatch4.3.0-
OR
wso2api_managerMatch4.4.0-
OR
wso2api_managerMatch4.5.0-
OR
wso2api_manager_analyticsMatch2.0.0
OR
wso2api_manager_analyticsMatch2.1.0
OR
wso2api_manager_analyticsMatch2.2.0
OR
wso2api_manager_analyticsMatch2.5.0
OR
wso2data_analytics_serverMatch3.1.0
OR
wso2data_analytics_serverMatch3.2.0
OR
wso2enterprise_integratorMatch6.2.0
OR
wso2enterprise_integratorMatch6.3.0
OR
wso2enterprise_mobility_managerMatch2.2.0
OR
wso2enterprise_service_busMatch5.0.0
OR
wso2identity_serverMatch5.2.0
OR
wso2identity_serverMatch5.3.0
OR
wso2identity_serverMatch5.4.0
OR
wso2identity_serverMatch5.4.1
OR
wso2identity_serverMatch5.5.0
OR
wso2identity_serverMatch5.6.0
OR
wso2identity_serverMatch5.7.0
OR
wso2identity_serverMatch5.8.0
OR
wso2identity_serverMatch5.9.0
OR
wso2identity_serverMatch5.10.0
OR
wso2identity_serverMatch5.11.0
OR
wso2identity_serverMatch6.0.0-
OR
wso2identity_serverMatch6.1.0-
OR
wso2identity_serverMatch7.0.0-
OR
wso2identity_serverMatch7.1.0-
OR
wso2identity_server_analyticsMatch5.2.0
OR
wso2identity_server_analyticsMatch5.3.0
OR
wso2identity_server_analyticsMatch5.5.0
OR
wso2identity_server_analyticsMatch5.6.0
OR
wso2identity_server_as_key_managerMatch5.3.0
OR
wso2identity_server_as_key_managerMatch5.5.0
OR
wso2identity_server_as_key_managerMatch5.6.0
OR
wso2identity_server_as_key_managerMatch5.7.0
OR
wso2identity_server_as_key_managerMatch5.9.0
OR
wso2identity_server_as_key_managerMatch5.10.0
OR
wso2open_banking_amMatch1.4.0
OR
wso2open_banking_amMatch1.5.0
OR
wso2open_banking_amMatch2.0.0
OR
wso2open_banking_iamMatch2.0.0
OR
wso2open_banking_kmMatch1.4.0
OR
wso2open_banking_kmMatch1.5.0
OR
wso2traffic_managerMatch4.5.0
OR
wso2universal_gatewayMatch4.5.0
[
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Identity Server as Key Manager",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "5.3.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.3.0.41",
        "status": "affected",
        "version": "5.3.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.5.0.53",
        "status": "affected",
        "version": "5.5.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.6.0.75",
        "status": "affected",
        "version": "5.6.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.7.0.125",
        "status": "affected",
        "version": "5.7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.9.0.176",
        "status": "affected",
        "version": "5.9.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.10.0.359",
        "status": "affected",
        "version": "5.10.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Identity Server",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "5.2.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.2.0.34",
        "status": "affected",
        "version": "5.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.3.0.36",
        "status": "affected",
        "version": "5.3.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.4.0.34",
        "status": "affected",
        "version": "5.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.4.1.38",
        "status": "affected",
        "version": "5.4.1",
        "versionType": "custom"
      },
      {
        "lessThan": "5.5.0.52",
        "status": "affected",
        "version": "5.5.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.6.0.60",
        "status": "affected",
        "version": "5.6.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.7.0.126",
        "status": "affected",
        "version": "5.7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.8.0.110",
        "status": "affected",
        "version": "5.8.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.9.0.169",
        "status": "affected",
        "version": "5.9.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.10.0.369",
        "status": "affected",
        "version": "5.10.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.11.0.413",
        "status": "affected",
        "version": "5.11.0",
        "versionType": "custom"
      },
      {
        "lessThan": "6.0.0.244",
        "status": "affected",
        "version": "6.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "6.1.0.243",
        "status": "affected",
        "version": "6.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "7.0.0.118",
        "status": "affected",
        "version": "7.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "7.1.0.25",
        "status": "affected",
        "version": "7.1.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Open Banking KM",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "1.4.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "1.4.0.133",
        "status": "affected",
        "version": "1.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "1.5.0.123",
        "status": "affected",
        "version": "1.5.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Open Banking IAM",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "2.0.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.0.409",
        "status": "affected",
        "version": "2.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Open Banking AM",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "1.4.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "1.4.0.139",
        "status": "affected",
        "version": "1.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "1.5.0.140",
        "status": "affected",
        "version": "1.5.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.0.389",
        "status": "affected",
        "version": "2.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 API Manager",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "2.0.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.0.31",
        "status": "affected",
        "version": "2.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.1.0.40",
        "status": "affected",
        "version": "2.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.2.0.59",
        "status": "affected",
        "version": "2.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.5.0.85",
        "status": "affected",
        "version": "2.5.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.6.0.146",
        "status": "affected",
        "version": "2.6.0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.0.0.176",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.1.0.340",
        "status": "affected",
        "version": "3.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.2.0.441",
        "status": "affected",
        "version": "3.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.2.1.61",
        "status": "affected",
        "version": "3.2.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.0.0.361",
        "status": "affected",
        "version": "4.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.1.0.224",
        "status": "affected",
        "version": "4.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.2.0.162",
        "status": "affected",
        "version": "4.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.3.0.75",
        "status": "affected",
        "version": "4.3.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.0.39",
        "status": "affected",
        "version": "4.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.5.0.23",
        "status": "affected",
        "version": "4.5.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Identity Server Analytics",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "5.2.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.2.0.19",
        "status": "affected",
        "version": "5.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.3.0.17",
        "status": "affected",
        "version": "5.3.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.5.0.31",
        "status": "affected",
        "version": "5.5.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.6.0.38",
        "status": "affected",
        "version": "5.6.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "API Manager Analytics",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "2.0.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.0.14",
        "status": "affected",
        "version": "2.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.1.0.19",
        "status": "affected",
        "version": "2.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.2.0.30",
        "status": "affected",
        "version": "2.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.5.0.39",
        "status": "affected",
        "version": "2.5.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Enterprise Integrator",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "6.2.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "6.2.0.62",
        "status": "affected",
        "version": "6.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "6.3.0.70",
        "status": "affected",
        "version": "6.3.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Enterprise Service Bus Analytics",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "5.0.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.0.0.13",
        "status": "affected",
        "version": "5.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Data Analytics Server",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "3.1.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.1.0.20",
        "status": "affected",
        "version": "3.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.2.0.33",
        "status": "affected",
        "version": "3.2.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Enterprise Mobility Manager",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "2.2.0",
        "status": "unknown",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.2.0.28",
        "status": "affected",
        "version": "2.2.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Universal Gateway",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "4.5.0.22",
        "status": "affected",
        "version": "4.5.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 API Control Plane",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "4.5.0.24",
        "status": "affected",
        "version": "4.5.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WSO2 Traffic Manager",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "4.5.0.22",
        "status": "affected",
        "version": "4.5.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "packageName": "org.wso2.carbon.extension.identity.authenticator.outbound.totp:org.wso2.carbon.extension.identity.authenticator.totp.connector",
    "product": "org.wso2.carbon.extension.identity.authenticator.outbound.totp:org.wso2.carbon.extension.identity.authenticator.totp.connector",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "2.0.10.1",
        "status": "affected",
        "version": "2.0.10",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.15.1",
        "status": "affected",
        "version": "2.0.15",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.21.1",
        "status": "affected",
        "version": "2.0.21",
        "versionType": "custom"
      },
      {
        "lessThan": "2.0.22.1",
        "status": "affected",
        "version": "2.0.22",
        "versionType": "custom"
      },
      {
        "lessThan": "2.1.12.1",
        "status": "affected",
        "version": "2.1.12",
        "versionType": "custom"
      },
      {
        "lessThan": "2.1.1972",
        "status": "affected",
        "version": "2.1",
        "versionType": "custom"
      },
      {
        "lessThan": "2.2.24",
        "status": "affected",
        "version": "2.2",
        "versionType": "custom"
      },
      {
        "lessThan": "2.2.25",
        "status": "affected",
        "version": "2.2",
        "versionType": "custom"
      },
      {
        "lessThan": "3.1.0.74",
        "status": "affected",
        "version": "3.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.3.6.7",
        "status": "affected",
        "version": "3.3.6",
        "versionType": "custom"
      },
      {
        "lessThan": "3.3.26.2",
        "status": "affected",
        "version": "3.3.26",
        "versionType": "custom"
      },
      {
        "lessThan": "3.3.35.1",
        "status": "affected",
        "version": "3.3.35",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "version": "3.3.41",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "packageName": "org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.rest.api.util",
    "product": "org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.rest.api.util",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "6.7.206.567",
        "status": "affected",
        "version": "6.7.206",
        "versionType": "custom"
      },
      {
        "lessThan": "6.7.210.63",
        "status": "affected",
        "version": "6.7.210",
        "versionType": "custom"
      },
      {
        "lessThan": "9.0.174.522",
        "status": "affected",
        "version": "9.0.174",
        "versionType": "custom"
      },
      {
        "lessThan": "9.20.74.379",
        "status": "affected",
        "version": "9.20.74",
        "versionType": "custom"
      },
      {
        "lessThan": "9.28.116.360",
        "status": "affected",
        "version": "9.28.116",
        "versionType": "custom"
      },
      {
        "lessThan": "9.29.120.184",
        "status": "affected",
        "version": "9.29.120",
        "versionType": "custom"
      },
      {
        "lessThan": "9.30.67.109",
        "status": "affected",
        "version": "9.30.67",
        "versionType": "custom"
      },
      {
        "lessThan": "9.31.86.71",
        "status": "affected",
        "version": "9.31.86",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "version": "9.32.133",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "packageName": "org.wso2.carbon:org.wso2.carbon.base",
    "product": "org.wso2.carbon:org.wso2.carbon.base",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "4.4.7.6",
        "status": "affected",
        "version": "4.4.7",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.9.11",
        "status": "affected",
        "version": "4.4.9",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.11.9",
        "status": "affected",
        "version": "4.4.11",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.26.12",
        "status": "affected",
        "version": "4.4.26",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.35.44",
        "status": "affected",
        "version": "4.4.35",
        "versionType": "custom"
      },
      {
        "lessThan": "4.5.1.43",
        "status": "affected",
        "version": "4.5.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.0.1990",
        "status": "affected",
        "version": "4.6.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.1.149",
        "status": "affected",
        "version": "4.6.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.2.667",
        "status": "affected",
        "version": "4.6.2",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.3.36",
        "status": "affected",
        "version": "4.6.3",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.4.14",
        "status": "affected",
        "version": "4.6.4",
        "versionType": "custom"
      },
      {
        "lessThan": "4.7.1.68",
        "status": "affected",
        "version": "4.7.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.8.1.39",
        "status": "affected",
        "version": "4.8.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.0.99",
        "status": "affected",
        "version": "4.9.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.26.25",
        "status": "affected",
        "version": "4.9.26",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.27.10",
        "status": "affected",
        "version": "4.9.27",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.28.11",
        "status": "affected",
        "version": "4.9.28",
        "versionType": "custom"
      },
      {
        "lessThan": "4.10.9.66",
        "status": "affected",
        "version": "4.10.9",
        "versionType": "custom"
      },
      {
        "lessThan": "4.10.42.9",
        "status": "affected",
        "version": "4.10.42",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.29",
        "status": "affected",
        "version": "4.9",
        "versionType": "custom"
      },
      {
        "lessThan": "4.10.94",
        "status": "affected",
        "version": "4.10",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "packageName": "org.wso2.carbon.identity.framework:org.wso2.carbon.identity.application.mgt",
    "product": "org.wso2.carbon.identity.framework:org.wso2.carbon.identity.application.mgt",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "5.2.0.4",
        "status": "affected",
        "version": "5.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.2.2.21",
        "status": "affected",
        "version": "5.2.2",
        "versionType": "custom"
      },
      {
        "lessThan": "5.7.5.18",
        "status": "affected",
        "version": "5.7.5",
        "versionType": "custom"
      },
      {
        "lessThan": "5.11.148.19",
        "status": "affected",
        "version": "5.11.148",
        "versionType": "custom"
      },
      {
        "lessThan": "5.11.256.21",
        "status": "affected",
        "version": "5.11.256",
        "versionType": "custom"
      },
      {
        "lessThan": "5.12.153.63",
        "status": "affected",
        "version": "5.12.153",
        "versionType": "custom"
      },
      {
        "lessThan": "5.12.387.46",
        "status": "affected",
        "version": "5.12.387",
        "versionType": "custom"
      },
      {
        "lessThan": "5.14.97.89",
        "status": "affected",
        "version": "5.14.97",
        "versionType": "custom"
      },
      {
        "lessThan": "5.17.5.317",
        "status": "affected",
        "version": "5.17.5",
        "versionType": "custom"
      },
      {
        "lessThan": "5.17.118.17",
        "status": "affected",
        "version": "5.17.118",
        "versionType": "custom"
      },
      {
        "lessThan": "5.18.187.309",
        "status": "affected",
        "version": "5.18.187",
        "versionType": "custom"
      },
      {
        "lessThan": "5.18.248.30",
        "status": "affected",
        "version": "5.18.248",
        "versionType": "custom"
      },
      {
        "lessThan": "5.23.8.207",
        "status": "affected",
        "version": "5.23.8",
        "versionType": "custom"
      },
      {
        "lessThan": "5.24.8.23",
        "status": "affected",
        "version": "5.24.8",
        "versionType": "custom"
      },
      {
        "lessThan": "5.25.92.152",
        "status": "affected",
        "version": "5.25.92",
        "versionType": "custom"
      },
      {
        "lessThan": "5.25.705.19",
        "status": "affected",
        "version": "5.25.705",
        "versionType": "custom"
      },
      {
        "lessThan": "5.25.713.9",
        "status": "affected",
        "version": "5.25.713",
        "versionType": "custom"
      },
      {
        "lessThan": "5.25.724.3",
        "status": "affected",
        "version": "5.25.724",
        "versionType": "custom"
      },
      {
        "lessThan": "7.0.78.133",
        "status": "affected",
        "version": "7.0.78",
        "versionType": "custom"
      },
      {
        "lessThan": "7.8.23.47",
        "status": "affected",
        "version": "7.8.23",
        "versionType": "custom"
      },
      {
        "lessThan": "5.25.734",
        "status": "affected",
        "version": "5.25",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "version": "7.8.489",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "packageName": "org.wso2.carbon:org.wso2.carbon.server.admin",
    "product": "org.wso2.carbon:org.wso2.carbon.server.admin",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "4.4.7.6",
        "status": "affected",
        "version": "4.4.7",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.9.11",
        "status": "affected",
        "version": "4.4.9",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.11.9",
        "status": "affected",
        "version": "4.4.11",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.26.12",
        "status": "affected",
        "version": "4.4.26",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.32.16",
        "status": "affected",
        "version": "4.4.32",
        "versionType": "custom"
      },
      {
        "lessThan": "4.4.35.44",
        "status": "affected",
        "version": "4.4.35",
        "versionType": "custom"
      },
      {
        "lessThan": "4.5.1.43",
        "status": "affected",
        "version": "4.5.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.0.1990",
        "status": "affected",
        "version": "4.6.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.1.149",
        "status": "affected",
        "version": "4.6.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.2.667",
        "status": "affected",
        "version": "4.6.2",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.3.36",
        "status": "affected",
        "version": "4.6.3",
        "versionType": "custom"
      },
      {
        "lessThan": "4.6.4.14",
        "status": "affected",
        "version": "4.6.4",
        "versionType": "custom"
      },
      {
        "lessThan": "4.7.1.68",
        "status": "affected",
        "version": "4.7.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.8.1.39",
        "status": "affected",
        "version": "4.8.1",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.0.99",
        "status": "affected",
        "version": "4.9.0",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.26.25",
        "status": "affected",
        "version": "4.9.26",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.27.10",
        "status": "affected",
        "version": "4.9.27",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.28.11",
        "status": "affected",
        "version": "4.9.28",
        "versionType": "custom"
      },
      {
        "lessThan": "4.10.9.66",
        "status": "affected",
        "version": "4.10.9",
        "versionType": "custom"
      },
      {
        "lessThan": "4.10.42.9",
        "status": "affected",
        "version": "4.10.42",
        "versionType": "custom"
      },
      {
        "lessThan": "4.9.29",
        "status": "affected",
        "version": "4.9",
        "versionType": "custom"
      },
      {
        "lessThan": "4.10.94",
        "status": "affected",
        "version": "4.10",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "packageName": "org.wso2.carbon.identity.workflow.user:org.wso2.carbon.user.mgt.workflow",
    "product": "org.wso2.carbon.identity.workflow.user:org.wso2.carbon.user.mgt.workflow",
    "vendor": "WSO2",
    "versions": [
      {
        "lessThan": "5.1.1.1",
        "status": "affected",
        "version": "5.1.1",
        "versionType": "custom"
      },
      {
        "lessThan": "5.1.2.1",
        "status": "affected",
        "version": "5.1.2",
        "versionType": "custom"
      },
      {
        "lessThan": "5.1.5.1",
        "status": "affected",
        "version": "5.1.5",
        "versionType": "custom"
      },
      {
        "lessThan": "5.3.3.1",
        "status": "affected",
        "version": "5.3.3",
        "versionType": "custom"
      },
      {
        "lessThan": "5.4.0.4",
        "status": "affected",
        "version": "5.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.4.1.5",
        "status": "affected",
        "version": "5.4.1",
        "versionType": "custom"
      },
      {
        "lessThan": "5.6.0.1",
        "status": "affected",
        "version": "5.6.0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "version": "5.6.21",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2025 21:40Current
6.5Medium risk
Vulners AI Score6.5
CVSS 3.16.5 - 9.6
EPSS0.00032
SSVC
CWE-284
internal administrative interfacesimproper access controlwso2 productssoap admin servicessystem rest apisunauthorized operationslow privileged user
9