2024-08-01 16:49:47
1E
PUBLISHED
The 1E Platforms component utilized the third-party Duende Identity Server, which suffered from an open redirect vulnerability, permitting an attacker to control the redirection path of end users. Note: 1E Platforms component utilizing the third-party Duende Identity Server has been updated with the patch that includes the fix.