The host is installed with WSO2 API Manager 3.0.0 or prior and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle an unknown functionality of the component Management Console. Successful exploitation could allow attackers to escalate privileges using an unknown input.