CVE-2024-7096 | WSO2 Open Banking IAM SOAP Admin Services authorization

A vulnerability, which was classified as problematic, was found in WSO2 Open Banking IAM, Open Banking AM, API Manager, Enterprise Mobility Manager, Identity Server, Identity Server as Key Manager and Open Banking KM. This affects an unknown part of the component SOAP Admin Services. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2024-7096. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-7096 | WSO2 Open Banking IAM SOAP Admin Services authorization

Post correlati

CVE-2024-29030 | usememos up to 0.13.2 /api/resource server-side request forgery (GHSL-2023-154)

CVE-2024-29469 | OneBlog 2.3.4 Lab Category List cross site scripting

CVE-2025-5174 | erdogant pypickle up to 1.1.5 pypickle/pypickle.py load deserialization

CVE-2025-20927 | Samsung Notes up to 4.4.21.62 out-of-bounds