{"vulnerability": "cve-2024-7487", "sightings": [{"uuid": "5ae7a49b-0cdc-4804-a5be-103ed0a709ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7487", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17349", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-7487\n\ud83d\udd25 CVSS Score: 5.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N)\n\ud83d\udd39 Description: An improper authentication vulnerability exists in WSO2 Identity Server 7.0.0 due to an implementation flaw that allows app-native authentication to be bypassed when an invalid object is passed.\n\nExploitation of this vulnerability could enable malicious actors to circumvent the client verification mechanism, compromising the integrity of the authentication process.\n\ud83d\udccf Published: 2025-05-22T19:03:13.414Z\n\ud83d\udccf Modified: 2025-05-22T19:23:58.211Z\n\ud83d\udd17 References:\n1. https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2024/WSO2-2024-3348/", "creation_timestamp": "2025-05-22T19:45:58.000000Z"}, {"uuid": "667687ab-b9ad-48f1-a491-b809ca0260e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7487", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpscrt3g4h2s", "content": "", "creation_timestamp": "2025-05-22T23:53:19.485137Z"}]}