CVE-2025-9973 | WSO2 Identity Server Organization Context missing initialization

A vulnerability identified as problematic has been detected in WSO2 Identity Server and Conditional Authentication User and Roles Related Functions. This affects an unknown part of the component Organization Context Handler. Performing a manipulation results in missing initialization of a variable.

This vulnerability is known as CVE-2025-9973. Access to the local network is required for this attack. No exploit is available.

You should upgrade the affected component.VulDB Recent EntriesRead More