CVE-2024-2321
WSO2 CVE-2024-2321 involves an incorrect authorization vulnerability across multiple WSO2 products that allows API access using a refresh token instead of an access token due to inadequate authorization checks and token mapping. Connected sources corroborate the issue and note that exploitation r...