Lucene search

CVE-2024-7211

🗓️ 01 Aug 2024 17:09:16Reported by 1EType

The Identity Server on 1E Platform enables URL redirection to untrusted site

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2024-7211 The Duende Identity Server based component in 1E Platform may allow URL redirections to untrusted websites.	1 Aug 202416:49	–	cvelist
Vulnrichment	CVE-2024-7211 The Duende Identity Server based component in 1E Platform may allow URL redirections to untrusted websites.	1 Aug 202416:49	–	vulnrichment
NVD	CVE-2024-7211	1 Aug 202417:16	–	nvd

Nvd

Node

1e platformMatch8.4.1.229

1e platformMatch23.7.1.80

1e platformMatch23.11.1.15

1e platformMatch24.7

[
  {
    "defaultStatus": "unaffected",
    "product": "1E Platform",
    "vendor": "1E",
    "versions": [
      {
        "status": "affected",
        "version": "24.7"
      },
      {
        "status": "affected",
        "version": "23.11.1.15"
      },
      {
        "status": "affected",
        "version": "23.7.1.80"
      },
      {
        "status": "affected",
        "version": "8.4.1.229"
      }
    ]
  }
]

Source	Link
1e	www.1e.com/trust-security-compliance/cve-info/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Aug 2024 17:16Current

4.8Medium risk

Vulners AI Score4.8

CVSS34.7 - 6.1

EPSS0.00069

SSVC

CWE-601