CVE-2024-4598

Name of the Vulnerable Software and Affected Versions WSO2 products (affected versions not specified)

Description An information disclosure issue exists due to an improper implementation of the enrich mediator. Authenticated users may be able to view unintended business data from other mediation contexts because the internal state is not properly isolated or cleared between executions. This does not impact user credentials or access tokens but may lead to leakage of sensitive business information handled during message flows.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.