Vulnerabilidades en DuendeSoftware
4 resultadosCVE-2024-39694MEDIUMDuende IdentityServer Open Redirect vulnerabilityEPSS 0.5%CVE-2025-26620MEDIUMDuende.AccessTokenManagement race condition when concurrently retrieving customized Client Credentials Access TokensEPSS 0.4%CVE-2024-49755LOWDuende IdentityServer has insufficient validation of DPoP cnf claim in Local APIsEPSS 0.3%CVE-2024-51987MEDIUMHTTP Client uses incorrect token after refresh in Duende.AccessTokenManagement.OpenIdConnectEPSS 0.2%