CVE-2025-9973 - Authorization Bypass via Adaptive Authentication in WSO2 Identity Server Allows Cross-Organization Account Takeover
CVE ID :CVE-2025-9973 Published : May 11, 2026, 12:16 p.m. | 49 minutes ago Description :Due to not validating the organization context when executing adaptive authentication flows, the WSO2 Identity Server allows adaptive authentication logic to be triggered on unintended organizations. A mal
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] A fake OpenAI repository has taken top spot on Hugging Face — but all it does is push infostealer malware
- [CYBER] CVE-2026-8290 - Open5GS SMF nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf denial of service
- [CYBER] CVE-2026-8289 - Open5GS SMF nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf denial of service
- [CYBER] CVE-2026-4802 - Cockpit: cockpit: arbitrary command execution via crafted links in system logs ui
- [CYBER] Why Changing Passwords Doesn’t End an Active Directory Breach
- [CYBER] Google says criminals used AI-built zero-day in planned mass hack spree