CVE-2024-7096— Privilege Escalation in Multiple WSO2 Products via SOAP Admin Service Due to Business Logic Flaw
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-7096
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege Escalation in Multiple WSO2 Products via SOAP Admin Service Due to Business Logic Flaw
Source: NVD (National Vulnerability Database)
Vulnerability Description
A privilege escalation vulnerability exists in multiple WSO2 products due to a business logic flaw in SOAP admin services. A malicious actor can create a new user with elevated permissions only when all of the following conditions are met: * SOAP admin services are accessible to the attacker. * The deployment includes an internally used attribute that is not part of the default WSO2 product configuration. * At least one custom role exists with non-default permissions. * The attacker has knowledge of the custom role and the internal attribute used in the deployment. Exploiting this vulnerability allows malicious actors to assign higher privileges to self-registered users, bypassing intended access control mechanisms.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
WSO2多款产品 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WSO2 API Manager等都是美国WSO2公司的产品。WSO2 API Manager是一套API生命周期管理解决方案。WSO2 Identity Server(IS)是一款身份认证服务器。WSO2 Identity Server as Key Manager是一个身份服务器。 WSO2多款产品存在安全漏洞,该漏洞源于SOAP管理服务中的业务逻辑缺陷,可能导致权限提升。以下产品受到影响:WSO2 API Manager、WSO2 Identity Server、WSO2 Identity Serv
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| WSO2 | WSO2 Open Banking IAM | 2.0.0 ~ 2.0.0.364 | - | |
| WSO2 | WSO2 Open Banking AM | 1.3.0 ~ 1.3.0.131 | - | |
| WSO2 | WSO2 API Manager | 2.0.0 ~ 2.0.0.29 | - | |
| WSO2 | WSO2 Enterprise Mobility Manager | 2.2.0 ~ 2.2.0.26 | - | |
| WSO2 | WSO2 Identity Server | 5.2.0 ~ 5.2.0.32 | - | |
| WSO2 | WSO2 Identity Server as Key Manager | 5.3.0 ~ 5.3.0.38 | - | |
| WSO2 | WSO2 Open Banking KM | 1.3.0 ~ 1.3.0.114 | - |
II. Public POCs for CVE-2024-7096
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-7096
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: WSO2
- CVE-2025-10503
Reflected Cross-Site Scripting via Authentication Endpoint i - CVE-2025-12624
Improper Token Invalidation in WSO2 Identity Server Allows A - CVE-2025-6024
Cross-Site Scripting via Authentication Endpoint in Multiple - CVE-2024-10242
Reflected Cross-Site Scripting via Authentication Endpoint i - CVE-2024-8010
XML External Entity Injection via Publisher in WSO2 API Mana
Same weakness: CWE-863
- CVE-2026-42571
Privilege Escalation Attack affecting Pelican Web UI - CVE-2025-15633
HCL BigFix WebUI is affected by an improper authorization vu - CVE-2026-42296
Argo Workflows has incomplete fix for CVE-2026-31892: hostNe - CVE-2025-66170
Apache CloudStack: Any user can list backups that they shoul - CVE-2026-41903
FreeScout IDOR Vulnerability: PERM_EDIT_USERS allows modifyi
V. Comments for CVE-2024-7096
No comments yet