Primary

Context

WSO2 Products Arbitrary Code Execution Vulnerability via Scripting Engines

Vulnerability

A vulnerability allowing arbitrary code execution exists in multiple WSO2 products due to inadequate restrictions in the GraalJS and NashornJS Script Mediator engines. This issue affects authenticated users with elevated privileges, who can execute arbitrary code within the integration runtime environment. By default, access to these scripting engines is restricted to administrators in WSO2 Micro Integrator and WSO2 Enterprise Integrator. However, in WSO2 API Manager, access is granted to both administrators and API creators. This vulnerability could enable trusted-but-privileged users to perform unauthorized actions or compromise the execution environment.

Impact

Exploitation of this vulnerability could lead to unauthorized arbitrary code execution within the affected integration runtime environment.

Added: Nov 5, 2025, 7:27 PM

Updated: Nov 5, 2025, 7:27 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

7.5

exploitability

5.4

remediation

0.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

7.5

exploitability

5.4

remediation

0.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WSO2 Products Arbitrary Code Execution Vulnerability via Scripting Engines

Vulnerability

Impact

Affected Products

WSO2 Micro Integrator

WSO2 Enterprise Integrator

WSO2 API Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating