Description
A malicious actor with administrative privileges can upload an arbitrary file to a user-controlled location within the deployment via a system REST API. Successful uploads may lead to remote code execution. By leveraging the vulnerability, a malicious actor may perform Remote Code Execution by uploading a specially crafted payload.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Affected products
- WSO2 / org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl9.32.167 – *
- WSO2 / org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl9.32.147 – 9.32.147.2
- WSO2 / org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl9.31.86 – 9.31.86.100
- WSO2 / org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl9.30.67 – 9.30.67.133
- WSO2 / org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl9.29.120 – 9.29.120.210
- WSO2 / org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl9.28.116 – 9.28.116.391
- WSO2 / WSO2 API Control Plane0 – 4.5.0
- WSO2 / WSO2 API Control Plane4.5.0 – 4.5.0.39
- WSO2 / WSO2 API Control Plane4.6.0 – 4.6.0.3
- WSO2 / WSO2 API Manager0 – 4.2.0
- WSO2 / WSO2 API Manager4.2.0 – 4.2.0.179
- WSO2 / WSO2 API Manager4.3.0 – 4.3.0.91
- WSO2 / WSO2 API Manager4.4.0 – 4.4.0.55
- WSO2 / WSO2 API Manager4.5.0 – 4.5.0.38
- WSO2 / WSO2 API Manager4.6.0 – 4.6.0.3
- WSO2 / WSO2 Traffic Manager4.6.0 – 4.6.0.3
- WSO2 / WSO2 Traffic Manager4.5.0 – 4.5.0.37
- WSO2 / WSO2 Traffic Manager0 – 4.5.0
- WSO2 / WSO2 Universal Gateway4.6.0 – 4.6.0.3
- WSO2 / WSO2 Universal Gateway4.5.0 – 4.5.0.37
- WSO2 / WSO2 Universal Gateway0 – 4.5.0