← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-29464 — Actively Exploited: Multiple Products (WSO2)

Multiple WSO2 products allow for unrestricted file upload, resulting in remote code execution.

CVE IDCVE-2022-29464
VendorWSO2
ProductMultiple Products
Vulnerability nameWSO2 Multiple Products Unrestrictive Upload of File Vulnerability
Date added2022-04-25
Remediation due2022-05-16
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionMultiple WSO2 products allow for unrestricted file upload, resulting in remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →