Critical severity9.1NVD Advisory· Published Aug 21, 2020· Updated Jun 17, 2026
CVE-2020-24589
CVE-2020-24589
Description
The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML External Entity injection (XXE) attacks.
Affected products
1- WSO2/API Managerdescription
Patches
Vulnerability mechanics
References
1- docs.wso2.com/display/Security/Security+Advisory+WSO2-2020-0742nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.