1
0
1
0
Vulnerability Timeline
1 vulnerabilities discovered over time for Api manager
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2024-1524 | 8.1 | This vulnerability allows an attacker to take control of a local user’s account by replacing their information if they can create a federated account with the same username and the system is set up to automatically provision accounts from a federated identity provider. To exploit this, the attacker must have a valid federated account and knowledge of the local username, and the system must have specific settings enabled for this to happen. | wso2api manager | Exploit Available | about 1 month agoFeb 24, 2026 |
About Wso2 Api manager Security
This page provides comprehensive security vulnerability tracking for Wso2 Api manager. Our database includes all CVEs affecting this product, updated in real-time from official sources.
Each vulnerability listing includes detailed CVSS severity analysis, exploit availability status, AI-generated explanations, and direct links to official security patches and vendor advisories.
Security Recommendations
- • Always keep Api manager updated to the latest version
- • Subscribe to security advisories from Wso2
- • Monitor this page for new vulnerabilities affecting your version
- • Prioritize patching critical and high severity issues immediately