CVE-2025-9152 | WSO2 API Manager/API Control Plane Dynamic Client Registration Endpoint missing authentication

A vulnerability labeled as critical has been found in WSO2 API Manager and API Control Plane. Affected is an unknown function of the component Dynamic Client Registration Endpoint. The manipulation results in missing authentication.

This vulnerability is known as CVE-2025-9152. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More