U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2025-9955

Change History

CVE Modified by CISA-ADP 6/17/2026 6:10:09 AM

Action Type Old Value New Value
Added SSVC

                  
                
              
{"timestamp":"2025-10-16T13:23:25.309685Z","id":"CVE-2025-9955","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}

CVE Modified by WSO2 LLC 6/17/2026 6:10:09 AM

Action Type Old Value New Value
Added Affected

                  
                
              
[{"vendor":"WSO2","product":"WSO2 Enterprise Integrator","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"6.0.0","versionType":"custom","status":"unknown"},{"version":"6.0.0","lessThan":"6.0.0.22","versionType":"custom","status":"affected"},{"version":"6.1.0","lessThan":"6.1.0.39","versionType":"custom","status":"affected"},{"version":"6.1.1","lessThan":"6.1.1.43","versionType":"custom","status":"affected"},{"version":"6.2.0","lessThan":"6.2.0.62","versionType":"custom","status":"affected"},{"version":"6.3.0","lessThan":"6.3.0.70","versionType":"custom","status":"affected"},{"version":"6.4.0","lessThan":"6.4.0.100","versionType":"custom","status":"affected"},{"version":"6.5.0","lessThan":"6.5.0.107","versionType":"custom","status":"affected"},{"version":"6.6.0","lessThan":"6.6.0.222","versionType":"custom","status":"affected"}]},{"vendor":"WSO2","product":"WSO2 Enterprise Service Bus","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"5.0.0","versionType":"custom","status":"unknown"},{"version":"5.0.0","lessThan":"5.0.0.29","versionType":"custom","status":"affected"}]},{"vendor":"WSO2","product":"org.wso2.carbon:org.wso2.carbon.base","defaultStatus":"unknown","packageName":"org.wso2.carbon:org.wso2.carbon.base","versions":[{"version":"4.4.8","lessThan":"4.4.8.7","versionType":"custom","status":"affected"},{"version":"4.4.14","lessThan":"4.4.14.5","versionType":"custom","status":"affected"},{"version":"4.4.16","lessThan":"4.4.16.9","versionType":"custom","status":"affected"},{"version":"4.4.26","lessThan":"4.4.26.13","versionType":"custom","status":"affected"},{"version":"4.4.32","lessThan":"4.4.32.16","versionType":"custom","status":"affected"},{"version":"4.4.36","lessThan":"4.4.36.7","versionType":"custom","status":"affected"},{"version":"4.4.40","lessThan":"4.4.40.37","versionType":"custom","status":"affected"},{"version":"4.5.3","lessThan":"4.5.3.45","versionType":"custom","status":"affected"},{"version":"4.9","lessThan":"4.9.29","versionType":"custom","status":"affected"},{"version":"4.10","lessThan":"4.10.94","versionType":"custom","status":"affected"}]},{"vendor":"WSO2","product":"org.wso2.carbon:org.wso2.carbon.server.admin","defaultStatus":"unknown","packageName":"org.wso2.carbon:org.wso2.carbon.server.admin","versions":[{"version":"4.4.8","lessThan":"4.4.8.7","versionType":"custom","status":"affected"},{"version":"4.4.14","lessThan":"4.4.14.5","versionType":"custom","status":"affected"},{"version":"4.4.16","lessThan":"4.4.16.9","versionType":"custom","status":"affected"},{"version":"4.4.26","lessThan":"4.4.26.13","versionType":"custom","status":"affected"},{"version":"4.4.32","lessThan":"4.4.32.16","versionType":"custom","status":"affected"},{"version":"4.4.36","lessThan":"4.4.36.7","versionType":"custom","status":"affected"},{"version":"4.4.40","lessThan":"4.4.40.37","versionType":"custom","status":"affected"},{"version":"4.5.3","lessThan":"4.5.3.45","versionType":"custom","status":"affected"},{"version":"4.9","lessThan":"4.9.29","versionType":"custom","status":"affected"},{"version":"4.10","lessThan":"4.10.94","versionType":"custom","status":"affected"}]}]