Maven package
org.wso2.carbon.apimgt/org.wso2.carbon.apimgt.impl
pkg:maven/org.wso2.carbon.apimgt/org.wso2.carbon.apimgt.impl
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-13590 | — | < 9.32.167 | 9.32.167 | Feb 19, 2026 | A malicious actor with administrative privileges can upload an arbitrary file to a user-controlled location within the deployment via a system REST API. Successful uploads may lead to remote code execution. By leveraging the vulnerability, a malicious actor may perform Remote |
- CVE-2025-13590Feb 19, 2026affected < 9.32.167fixed 9.32.167
A malicious actor with administrative privileges can upload an arbitrary file to a user-controlled location within the deployment via a system REST API. Successful uploads may lead to remote code execution. By leveraging the vulnerability, a malicious actor may perform Remote