org.wso2.identity.apps:authentication-portal (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.wso2.identity.apps:authentication-portal, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2023-6837 — CVSS 8.5 (high): Multiple WSO2 products have been identified as vulnerable to perform user impersonatoin using JIT provisioning. In order for this…
CVE-2024-6429 — CVSS 4.3 (medium): A content spoofing vulnerability exists in multiple WSO2 products due to improper error message handling. Under certain conditions, error…