VYPR

Wso2 Enterprise Mobility Manager

by Wso2

CVEs (2)

  • CVE-2024-7097May 30, 2025
    risk 0.02cvss epss 0.01

    An incorrect authorization vulnerability exists in multiple WSO2 products due to a flaw in the SOAP admin service, which allows user account creation regardless of the self-registration configuration settings. This vulnerability enables malicious actors to create new user…

  • CVE-2024-7096May 30, 2025
    risk 0.00cvss epss 0.01

    A privilege escalation vulnerability exists in multiple WSO2 products due to a business logic flaw in SOAP admin services. A malicious actor can create a new user with elevated permissions only when all of the following conditions are met: * SOAP admin services are accessible…