Security Advisory

CVE-2024-55017

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-30 00:00:00

Last updated 2025-09-30 19:27:55

Assigner mitre

State PUBLISHED

Description

Account Takeover in Corezoid 6.6.0 in the OAuth2 implementation via an open redirect in the redirect_uri parameter allows attackers to intercept authorization codes and gain unauthorized access to victim accounts.

← Browse all CVEs View on cve.org ↗