Web: https://www.cisecurity.org/advisory/a-vulnerability-in-wso2-products-could-allow-for-remote-code-execution_2022-058

April 26, 2022, 3:19 p.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center cisecurity.org

A vulnerability has been discovered in specific WSO2 products, which could allow for remote code execution. WSO2 is an open-source technology provider. It offers an enterprise platform for integrating application programming interfaces (API), applications, and web services locally and across the Internet. Successful exploitation of this vulnerability could allow for remote code execution. Depending on the privileges associated with the user, an attacker could then install programs; view; change, or delete data; or create new accounts with full user rights. …

code code execution products remote remote code execution vulnerability wso2

More from cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

Senior Product Security Engineer

@ Panther Labs | United States

Lead, DevSecOps

@ Hex Trust | Singapore, Singapore, Singapore

Information Security GRC Lead

@ Bud | London, England, United Kingdom

Security Analyst

@ AnaVation | Quantico, VA

Security Engineer

@ Homebase | Atlanta, Georgia, United States

Principal Offensive Cloud Security Engineer

@ Uptycs | Remote, USA

Security Engineer

@ AnaVation | Quantico, VA

Information Systems Security Manager

@ Barbaricum | Washington, DC

Cloud Engineer - GCP Security Specialist

@ DoiT International | Remote Israel

Security Operations Analyst - Compliance

@ Algolia | London, England

GRC Lead - Software Compliance

@ Ivanti | United States

Security Administrator

@ Trusting Social | Ho Chi Minh City, Ho Chi Minh City, Vietnam