CVE-2024-7211 — The 1E Platform's component utilized the third-party Duende Identity Server, which suffered from an open redirect vulnerability, permitting an attacker to control the redirection path of end users — CVE Database · The Intelligence Room