Actively exploited vulnerability

CVE-2022-29464: WSO2 Multiple Products Unrestrictive Upload of File Vulnerability

Multiple WSO2 products allow for unrestricted file upload, resulting in remote code execution.

CISA KEV source 25 Apr 2022 added 16 May 2022 remediation due

Affected product

WSO2 ยท Multiple Products

Known ransomware use: Known

Required action

Follow the source advisory and validate exposure in your environment.

Apply updates per vendor instructions.

Related Yasna coverage

Recent reporting that mentions CVE-2022-29464.