ByteOS Network

Vulnerability Details :

CVE-2025-8325

Assigner-WSO2

Assigner Org ID-ed10eef1-636d-4fbe-9993-6890dfa878f8

Published At-11 May, 2026 | 09:37

Updated At-11 May, 2026 | 12:41

Improper Access Control via Gateway API in Multiple WSO2 Products Allows Unauthorized Operations

The software fails to enforce role-based access controls for certain Gateway API invocations. Users with the 'Internal/Everyone' role can invoke these APIs, bypassing intended permission checks. This same vulnerability also affects Internal Service APIs, potentially exposing them in WSO2 APIM 3.x versions. A malicious actor with a valid user account on a vulnerable deployment can perform sensitive operations against the Gateway REST API regardless of their actual roles or privileges. This could lead to unintended behavior or misuse, particularly in production environments.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:WSO2

Assigner Org ID:ed10eef1-636d-4fbe-9993-6890dfa878f8

Published At:11 May, 2026 | 09:37

Updated At:11 May, 2026 | 12:41

▼CVE Numbering Authority (CNA)

Improper Access Control via Gateway API in Multiple WSO2 Products Allows Unauthorized Operations

Affected Products

Vendor

WSO2 LLC

Product

WSO2 API Control Plane

Default Status

unaffected

Versions

Affected

From 4.5.0 before 4.5.0.18 (custom)

Vendor

WSO2 LLC

Product

WSO2 Universal Gateway

Default Status

unaffected

Versions

Affected

From 4.5.0 before 4.5.0.17 (custom)

Vendor

WSO2 LLC

Product

WSO2 Traffic Manager

Default Status

unaffected

Versions

Affected

From 4.5.0 before 4.5.0.17 (custom)

Vendor

WSO2 LLC

Product

WSO2 API Manager

Default Status

unaffected

Versions

Affected

From 3.2.0 before 3.2.0.435 (custom)
From 3.2.1 before 3.2.1.55 (custom)
From 4.0.0 before 4.0.0.355 (custom)
From 4.1.0 before 4.1.0.219 (custom)
From 4.2.0 before 4.2.0.157 (custom)
From 4.3.0 before 4.3.0.70 (custom)
From 4.4.0 before 4.4.0.33 (custom)
From 4.5.0 before 4.5.0.17 (custom)

unknown

From 0 before 3.2.0 (custom)

Vendor

WSO2 LLC

Product

WSO2 Carbon API Management Implementation

Package Name

org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.impl

Default Status

unknown

Versions

Affected

From 6.7.206 before 6.7.206.563 (custom)
From 6.7.210 before 6.7.210.55 (custom)
From 9.0.174 before 9.0.174.513 (custom)
From 9.20.74 before 9.20.74.375 (custom)
From 9.28.116 before 9.28.116.352 (custom)
From 9.29.120 before 9.29.120.177 (custom)
From 9.30.67 before 9.30.67.100 (custom)
From 9.31.86 before 9.31.86.58 (custom)

Unaffected

From 9.32.75 through * (custom)

Vendor

WSO2 LLC

Product

WSO2 Carbon API Manager Rest API Utility

Package Name

org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.rest.api.util

Default Status

unknown

Versions

Affected

From 6.7.206 before 6.7.206.563 (custom)
From 6.7.210 before 6.7.210.55 (custom)
From 9.0.174 before 9.0.174.513 (custom)
From 9.20.74 before 9.20.74.375 (custom)
From 9.28.116 before 9.28.116.352 (custom)
From 9.29.120 before 9.29.120.177 (custom)
From 9.30.67 before 9.30.67.100 (custom)
From 9.31.86 before 9.31.86.58 (custom)

Unaffected

From 9.32.75 through * (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-281	CWE-281: Assigning Permissions Instead of Checking Them

Type: CWE

CWE ID: CWE-281

Description: CWE-281: Assigning Permissions Instead of Checking Them

Metrics

Version	Base score	Base severity	Vector
3.1	6.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Version: 3.1

Base score: 6.3

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Impacts

CAPEC ID	Description
CAPEC-558	CAPEC-558 CAPEC-558: Privilege Escalation

CAPEC ID: CAPEC-558

Description: CAPEC-558 CAPEC-558: Privilege Escalation

Solutions

Follow the instructions given on https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2026/WSO2-2025-4401/#solution

References

Hyperlink	Resource
https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2026/WSO2-2025-4401/	vendor-advisory

Hyperlink: https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2026/WSO2-2025-4401/

Resource:

vendor-advisory

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:ed10eef1-636d-4fbe-9993-6890dfa878f8

Published At:11 May, 2026 | 10:16

Updated At:11 May, 2026 | 10:16

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Type: Secondary

Version: 3.1

Base score: 6.3

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Weaknesses

CWE ID	Type	Source
CWE-281	Secondary	ed10eef1-636d-4fbe-9993-6890dfa878f8

CWE ID: CWE-281

Type: Secondary

Source: ed10eef1-636d-4fbe-9993-6890dfa878f8

References

Hyperlink	Source	Resource
https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2026/WSO2-2025-4401/	ed10eef1-636d-4fbe-9993-6890dfa878f8	N/A

Hyperlink: https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2026/WSO2-2025-4401/

Source: ed10eef1-636d-4fbe-9993-6890dfa878f8

Resource: N/A

Similar CVEs

3Records found

CVE-2022-24428

Matching Score-4

Assigner-Dell

View Details

Matching Score-4

Assigner-Dell

CVSS Score-6.3||MEDIUM

EPSS-0.32% / 55.07%

7 Day CHG~0.00%

Published-08 Apr, 2022 | 19:50

Updated-17 Sep, 2024 | 01:11

Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain an improper preservation of privileges. A remote filesystem user with a local account could potentially exploit this vulnerability, leading to an escalation of file privileges and information disclosure.

Vendor-Dell Inc.

Product-emc_powerscale_onefs PowerScale OneFS

CWE ID-CWE-281

Improper Preservation of Permissions

CVE-2022-36102

Matching Score-4

Assigner-GitHub, Inc.

View Details

Matching Score-4

Assigner-GitHub, Inc.

CVSS Score-6.3||MEDIUM

EPSS-0.61% / 70.03%

7 Day CHG~0.00%

Published-12 Sep, 2022 | 20:00

Updated-23 Apr, 2025 | 17:12

Acess control list bypassed via crafted specific URLs

Shopware is an open source e-commerce software. In affected versions if backend admin controllers are called with a certain notation, the ACL could be bypassed. Users could execute actions, which they are normally not able to do. Users are advised to update to the current version (5.7.15). Users can get the update via the Auto-Updater or directly via the download overview. There are no known workarounds for this issue.

Vendor-shopware shopware

Product-shopware shopware

CWE ID-CWE-281

Improper Preservation of Permissions

CVE-2023-2993

Matching Score-4

Assigner-Lenovo Group Ltd.

View Details

Matching Score-4

Assigner-Lenovo Group Ltd.

CVSS Score-5.4||MEDIUM

EPSS-0.11% / 28.25%

7 Day CHG~0.00%

Published-26 Jun, 2023 | 19:44

Updated-06 Nov, 2024 | 21:47

A valid, authenticated user with limited privileges may be able to use specifically crafted web management server API calls to execute a limited number of commands on SMM v1, SMM v2, and FPC that the user does not normally have sufficient privileges to execute.

Vendor-Lenovo Group Limited

Product-thinksystem_dw612_enclosure_firmware thinkagile_vx_enclosure thinksystem_da240_enclosure_firmware thinkagile_cp-cb-10 thinksystem_d2_enclosure_firmware thinksystem_d2_enclosure thinkagile_cp-cb-10_firmware thinkagile_vx_enclosure_firmware nextscale_n1200_enclosure thinksystem_da240_enclosure thinksystem_dw612_enclosure thinkagile_cp-cb-10e nextscale_n1200_enclosure_firmware thinkagile_cp-cb-10e_firmware thinkagile_hx_enclosure_certified_node thinkagile_hx_enclosure_certified_node_firmware System Management Module (SMM) Fan Power Controller (FPC)

CWE ID-CWE-281

Improper Preservation of Permissions

CVE-2025-8325

Credits

Improper Access Control via Gateway API in Multiple WSO2 Products Allows Unauthorized Operations

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Affected

Affected

Affected

unknown

Affected

Unaffected

Affected

Unaffected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs