CVE-2024-7074

Summary

An arbitrary file upload vulnerability exists in multiple WSO2 products due to improper validation of user input in SOAP admin services. A malicious actor with administrative privileges can upload an arbitrary file to a user-controlled location on the server.

By leveraging this vulnerability, an attacker could upload a specially crafted payload, potentially achieving remote code execution (RCE) on the server. Exploitation requires valid admin credentials, limiting its impact to authorized but potentially malicious users.

Affected Software

VendorProductVersion RangeStatus
WSO2WSO2 Enterprise Integrator0 < 6.0.0unknown
WSO2WSO2 Enterprise Integrator6.0.0 < 6.0.0.21affected
WSO2WSO2 Enterprise Integrator6.1.0 < 6.1.0.38affected
WSO2WSO2 Enterprise Integrator6.1.1 < 6.1.1.42affected
WSO2WSO2 Enterprise Integrator6.2.0 < 6.2.0.61affected
WSO2WSO2 Enterprise Integrator6.3.0 < 6.3.0.69affected
WSO2WSO2 Enterprise Integrator6.4.0 < 6.4.0.96affected
WSO2WSO2 Enterprise Integrator6.5.0 < 6.5.0.102affected
WSO2WSO2 Enterprise Integrator6.6.0 < 6.6.0.198affected
WSO2WSO2 API Manager0 < 2.0.0unknown
WSO2WSO2 API Manager2.0.0 < 2.0.0.28affected
WSO2WSO2 API Manager2.1.0 < 2.1.0.38affected
WSO2WSO2 API Manager2.2.0 < 2.2.0.57affected
WSO2WSO2 API Manager2.5.0 < 2.5.0.83affected
WSO2WSO2 API Manager2.6.0 < 2.6.0.143affected
WSO2WSO2 API Manager3.0.0 < 3.0.0.162affected
WSO2WSO2 API Manager3.1.0 < 3.1.0.293affected
WSO2WSO2 API Manager3.2.0 < 3.2.0.384affected
WSO2WSO2 API Manager3.2.1 < 3.2.1.16affected
WSO2WSO2 API Manager4.0.0 < 4.0.0.305affected
WSO2WSO2 API Manager4.1.0 < 4.1.0.166affected
WSO2WSO2 API Manager4.2.0 < 4.2.0.100affected
WSO2WSO2 API Manager4.3.0 < 4.3.0.16affected
WSO2WSO2 Enterprise Service Bus4.9.0 < 4.9.0.10affected
WSO2WSO2 Enterprise Service Bus5.0.0 < 5.0.0.28affected
WSO2WSO2 Enterprise Mobility Manager2.2.0 < 2.2.0.27affected
WSO2WSO2 Micro Integrator0 < 1.0.0unknown
WSO2WSO2 Micro Integrator1.0.0 < 1.0.0.49affected
WSO2WSO2 Open Banking AM0 < 1.3.0unknown
WSO2WSO2 Open Banking AM1.3.0 < 1.3.0.132affected
WSO2WSO2 Open Banking AM1.4.0 < 1.4.0.135affected
WSO2WSO2 Open Banking AM1.5.0 < 1.5.0.137affected
WSO2WSO2 Open Banking AM2.0.0 < 2.0.0.342affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.4.10 < 4.4.10.3affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.1 < 4.6.1.4affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.6 < 4.6.6.9affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.10 < 4.6.10.4affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.16 < 4.6.16.2affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.19 < 4.6.19.10affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.64 < 4.6.64.2affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.67 < 4.6.67.15affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.89 < 4.6.89.12affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.105 < 4.6.105.59affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.6.150 < 4.6.150.11affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.20 < 4.7.20.5affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.30 < 4.7.30.42affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.35 < 4.7.35.5affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.61 < 4.7.61.56affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.99 < 4.7.99.299affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.131 < 4.7.131.15affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.175 < 4.7.175.18affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.188 < 4.7.188.5affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.204 < 4.7.204.5affected
WSO2WSO2 Carbon Synapse Artifact Uploader BE4.7.216 <= *unaffected

Weaknesses

  • CWE-434: CWE-434 Unrestricted Upload of File with Dangerous Type

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References