Known exploited
WSO2
CVE published 2022-04-25
CVE-2022-29464
CVE-2022-29464 is a WSO2 multiple-products vulnerability described as an unrestrictive file upload issue. CISA added it to the Known Exploited Vulnerabilities catalog on 2022-04-25 and marked it as having known ransomware campaign use, which makes this a high-priority remediation item for any organization running affected WSO2 software.