CVE-2024-7096

Description

A privilege escalation vulnerability exists in multiple WSO2 products due to a business logic flaw in SOAP admin services. A malicious actor can create a new user with elevated permissions only when all of the following conditions are met: * SOAP admin services are accessible to the attacker. * The deployment includes an internally used attribute that is not part of the default WSO2 product configuration. * At least one custom role exists with non-default permissions. * The attacker has knowledge of the custom role and the internal attribute used in the deployment. Exploiting this vulnerability allows malicious actors to assign higher privileges to self-registered users, bypassing intended access control mechanisms.

How to fix CVE-2024-7096

To remediate CVE-2024-7096, upgrade the affected package to a fixed version below.

• —upgrade to 4.4.0 or later
• —upgrade to 7.1.0 or later

Is CVE-2024-7096 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

• >= 2.0.0, < 4.4.0
• >= 5.2.0, < 7.1.0

CVSS scores

References (3)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-7096
• WEBgithub.com/wso2/docs-security/blob/cfd53689909eef62fc5427e193e35e7df8ab1ef8/en/docs/security-announcements/security-advisories/2024/WSO2-2024-3573.md
• WEBsecurity.docs.wso2.com/en/latest/security-announcements/security-advisories/2024/WSO2-2024-3573