Security Advisory

CVE-2024-7211

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-01 16:49:47

Last updated 2025-06-18 18:41:03

Assigner 1E

State PUBLISHED

Description

The 1E Platforms component utilized the third-party Duende Identity Server, which suffered from an open redirect vulnerability, permitting an attacker to control the redirection path of end users. Note: 1E Platforms component utilizing the third-party Duende Identity Server has been updated with the patch that includes the fix.

← Browse all CVEs View on cve.org ↗