CVE-2025-9955 | WSO2 Enterprise Integrator SOAP Admin Services access control

A vulnerability classified as critical has been found in WSO2 Enterprise Integrator, Enterprise Service Bus, org.wso2.carbon:org.wso2.carbon.base and org.wso2.carbon:org.wso2.carbon.server.admin. This affects an unknown part of the component SOAP Admin Services. Performing manipulation results in improper access controls.

This vulnerability was named CVE-2025-9955. The attack needs to be approached within the local network. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More