CVE-2025-12624 | WSO2 Identity Server up to 5.2.0.34 Access Token session expiration

Inserito da Angelo Barbosa | Apr 16, 2026 | CVE

A vulnerability has been found in WSO2 Identity Server up to 5.2.0.34 and classified as problematic. The affected element is an unknown function of the component Access Token Handler. This manipulation causes session expiration.

This vulnerability appears as CVE-2025-12624. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2025-12624 | WSO2 Identity Server up to 5.2.0.34 Access Token session expiration

Post correlati

CVE-2025-38085 | Linux Kernel up to 6.15.3 hugetlb huge_pmd_unshare memory corruption

CVE-2024-34112 | Adobe ColdFusion 2023u7/up to 2021u13 access control (apsb24-41)

CVE-2025-0504 | Black Duck SCA prior 2025.10.0 Project Configuration privileges assignment

CVE-2024-38454 | ExpressionEngine up to 7.4.10 cross site scripting