1e Platform

6 CVEs affecting 1e Platform. Latest disclosed: 2025-03-12. Critical: 4, High: 1.

Top CVEs affecting 1e Platform
CVESeverityScorePublishedSummary
CVE-2023-5964Critical9.92023-11-06The 1E-Exchange-DisplayMessageinstruction that is part of the End-User Interaction product pack available on the 1E Exchange does not properly validate the Cap…
CVE-2023-45163Critical9.92023-11-06The 1E-Exchange-CommandLinePing instruction that is part of the Network product pack available on the 1E Exchange does not properly validate the input paramete…
CVE-2023-45161Critical9.92023-11-06The 1E-Exchange-URLResponseTime instruction that is part of the Network product pack available on the 1E Exchange does not properly validate the URL parameter…
CVE-2023-45162Critical9.92023-10-13Affected 1E Platform versions have a Blind SQL Injection vulnerability that can lead to arbitrary code execution.  Application of the relevant hotfix remediat…
CVE-2025-1683High7.82025-03-12Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access…
CVE-2024-7211Medium4.72024-08-01The 1E Platform's component utilized the third-party Duende Identity Server, which suffered from an open redirect vulnerability, permitting an attacker to cont…