WSO2 Products impacted: No
Customers actions required: No
H2 Console is by default disabled in WSO2 Products, also we do not recommend enabling this feature in production deployments345. Furthermore, for the issue to be exploitable
webAllowOthers should be set, which is also not recommended. Therefore, WSO2 customers are not affected by this issue.
In case if you have enabled the H2 console for any reason, please make sure to disable the H2 console.