KEV Entry
CVE-2024-7097
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2025-05-30 15:04 UTC
Timestamps
2025-05-30
2025-05-30
Scope
KEVIntel entry: Incorrect Authorization in Multiple WSO2 Products via SOAP Admin Service Allowing Unauthorized User Signup | Affected: WSO2 / WSO2 Open Banking AM, WSO2 Open Banking KM, WSO2 Identity Server as Key Manager, WSO2 API Manager, WSO2 Identity Server, WSO2 Open Banking IAM, WSO2 Enterprise Mobility Manager | CVSS: 4.3 (MEDIUM) | EPSS: 0.25144 | Used in malware: unknown | Not yet in CISA KEV: True
References
- {'id': 'CVE-2024-7097', 'url': 'https://www.cve.org/CVERecord?id=CVE-2024-7097'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2024-7097'}
1ccad7dd-a6f6-41fc-98b8-157f84f44d3e
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-23 14:04 UTC
2026-06-23 14:04 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details
|
- |