CVE-2024-7096

MEDIUM

WSO2 API Manager and Identity Server - Privilege Escalation via SOAP Admin Services

Title source: llm

Description

A privilege escalation vulnerability exists in multiple WSO2 products due to a business logic flaw in SOAP admin services. A malicious actor can create a new user with elevated permissions only when all of the following conditions are met: * SOAP admin services are accessible to the attacker. * The deployment includes an internally used attribute that is not part of the default WSO2 product configuration. * At least one custom role exists with non-default permissions. * The attacker has knowledge of the custom role and the internal attribute used in the deployment. Exploiting this vulnerability allows malicious actors to assign higher privileges to self-registered users, bypassing intended access control mechanisms.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2024/WSO2-2024-3573/

Scores

CVSS v3 4.2

EPSS 0.0059

EPSS Percentile 43.7%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-863

Status published

Products (43)

org.wso2.am/am-parent 2.0.0 - 4.4.0Maven

org.wso2.is/identity-server-parent 5.2.0 - 7.1.0Maven

wso2/api_manager 2.0.0

wso2/api_manager 2.1.0

wso2/api_manager 2.2.0

wso2/api_manager 2.5.0

wso2/api_manager 2.6.0

wso2/api_manager 3.0.0

wso2/api_manager 3.1.0

wso2/api_manager 3.2.0

... and 33 more

Published May 30, 2025

Tracked Since Feb 18, 2026