CVE-2025-10470: CWE-400: Uncontrolled Resource Consumption in WSO2 WSO2 Identity Server
The Magic Link authentication flow accepts multiple invalid authentication requests without adequate rate limiting or resource control, leading to uncontrolled memory usage growth. This vulnerability can result in a denial-of-service condition, causing service unavailability for deployments that utilize the Magic Link authenticator. The impact is limited to these specific deployments and requires repeated invalid authentication attempts to trigger.
AI Analysis
Technical Summary
This vulnerability (CVE-2025-10470) in WSO2 Identity Server 7.0.0 involves uncontrolled resource consumption (CWE-400) due to inadequate rate limiting on the Magic Link authentication flow. Attackers can send multiple invalid authentication requests, causing memory usage to grow uncontrollably and potentially resulting in a denial-of-service condition. The impact is limited to deployments that utilize the Magic Link authenticator. The CVSS v3.1 score is 8.6 (high), reflecting network attack vector, no privileges or user interaction required, and a high impact on availability without affecting confidentiality or integrity. No patch or official remediation level has been published by WSO2 as of the data provided.
Potential Impact
Successful exploitation can cause denial of service by exhausting memory resources on the affected WSO2 Identity Server 7.0.0 instances that use the Magic Link authentication flow. This results in service unavailability. There is no impact on confidentiality or integrity reported. The vulnerability requires repeated invalid authentication attempts and affects only specific deployments using the Magic Link authenticator.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, organizations should consider implementing external rate limiting or other resource controls on authentication requests to mitigate potential denial-of-service conditions. Monitoring for unusual authentication request patterns targeting the Magic Link flow may help detect exploitation attempts.
CVE-2025-10470: CWE-400: Uncontrolled Resource Consumption in WSO2 WSO2 Identity Server
Description
The Magic Link authentication flow accepts multiple invalid authentication requests without adequate rate limiting or resource control, leading to uncontrolled memory usage growth. This vulnerability can result in a denial-of-service condition, causing service unavailability for deployments that utilize the Magic Link authenticator. The impact is limited to these specific deployments and requires repeated invalid authentication attempts to trigger.
CVSS v3.1
Score 8.6high
Affected software
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability (CVE-2025-10470) in WSO2 Identity Server 7.0.0 involves uncontrolled resource consumption (CWE-400) due to inadequate rate limiting on the Magic Link authentication flow. Attackers can send multiple invalid authentication requests, causing memory usage to grow uncontrollably and potentially resulting in a denial-of-service condition. The impact is limited to deployments that utilize the Magic Link authenticator. The CVSS v3.1 score is 8.6 (high), reflecting network attack vector, no privileges or user interaction required, and a high impact on availability without affecting confidentiality or integrity. No patch or official remediation level has been published by WSO2 as of the data provided.
Potential Impact
Successful exploitation can cause denial of service by exhausting memory resources on the affected WSO2 Identity Server 7.0.0 instances that use the Magic Link authentication flow. This results in service unavailability. There is no impact on confidentiality or integrity reported. The vulnerability requires repeated invalid authentication attempts and affects only specific deployments using the Magic Link authenticator.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, organizations should consider implementing external rate limiting or other resource controls on authentication requests to mitigate potential denial-of-service conditions. Monitoring for unusual authentication request patterns targeting the Magic Link flow may help detect exploitation attempts.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- WSO2
- Date Reserved
- 2025-09-15T08:51:01.163Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a01bbe2cbff5d8610ff2f5a
Added to database: 5/11/2026, 11:22:10 AM
Last enriched: 5/11/2026, 11:36:41 AM
Last updated: 6/18/2026, 5:34:08 AM
Views: 80
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.