Reflected XSS Vulnerability in WSO2 Management Console Products
CVE-2022-29548

4.6MEDIUM

Key Information:

Vendor: Wso2
Status: Api Manager; Identity Server; Identity Server As Key Manager; Enterprise Integrator
Vendor: CVE Published:; 21 April 2022

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 67%

What is CVE-2022-29548?

A reflected cross-site scripting (XSS) vulnerability present in the Management Console of multiple WSO2 products allows an attacker to inject malicious scripts into web pages viewed by users. This issue is particularly concerning as it could lead to unauthorized access or data exposure. Affected versions span various WSO2 offerings, including the API Manager, Data Analytics Server, Enterprise Integrator, and various Identity Server iterations. Organizations using these products are advised to apply the necessary updates and enable security best practices to mitigate potential exploits.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2022-29548
Created by cxosmo

References

https://docs.wso2.com/display/Security/Security+Advisory+...

http://packetstormsecurity.com/files/167587/WSO2-Manageme...

https://security.docs.wso2.com/en/latest/security-announc...

EPSS Score

67% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Apr 24, 2022
👾
Exploit known to exist
Apr 24, 2022
Vulnerability published
Apr 21, 2022
Vulnerability Reserved
Apr 21, 2022

Wso2