CVE-2024-7487 – WSO2 Identity Server Bypass Authentication Vulnerability

CVE ID : CVE-2024-7487

Published : May 22, 2025, 7:15 p.m. | 2 hours ago

Description : An improper authentication vulnerability exists in WSO2 Identity Server 7.0.0 due to an implementation flaw that allows app-native authentication to be bypassed when an invalid object is passed.

Exploitation of this vulnerability could enable malicious actors to circumvent the client verification mechanism, compromising the integrity of the authentication process.

Severity: 5.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…