Lucene search
K

4 matches found

CNNVD
CNNVD
added 2025/11/05 12:0 a.m.5 views

WSO2多款产品 安全漏洞

WSO2 API Manager and other products are products of WSO2 Corporation, USA.WSO2 API Manager is a set of API lifecycle management solutions.WSO2 Identity Server IS is an identity server.WSO2 Enterprise Integrator is a set of open source hybrid integration platform. A security vulnerability exists i...

9.1CVSS6.4AI score0.00379EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/30 12:0 a.m.3 views

WSO2多款产品 安全漏洞

WSO2 API Manager and others are products of WSO2, Inc. of the U.S. WSO2 API Manager is a suite of API lifecycle management solutions.WSO2 Identity Server IS is an identity server.WSO2 Open Banking AM is an open banking gas pedal. A security vulnerability exists in a number of WSO2 products that...

4.3CVSS6.3AI score0.0054EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/04/18 12:0 a.m.32 views

CVE-2022-29464

Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/server/webapps...

9.8CVSS9.9AI score0.99999EPSS
Exploits22References4
Positive Technologies
Positive Technologies
added 2022/04/01 12:0 a.m.10 views

PT-2022-2322 · Wso2 · Wso2 Identity Server Analytics +5

Name of the Vulnerable Software and Affected Versions: WSO2 API Manager versions 2.2.0 through 4.0.0 WSO2 Identity Server versions 5.2.0 through 5.11.0 WSO2 Identity Server Analytics versions 5.4.0, 5.4.1, 5.5.0, and 5.6.0 WSO2 Identity Server as Key Manager versions 5.3.0 through 5.11.0 WSO2...

10CVSS9.9AI score0.99999EPSS
Exploits22References68
Rows per page
Query Builder