Does CVE-2024-2172 impact miniOrange SSO?

  • Resolved its_Tricky83

    (@samuelleung83)


    8 months, 1 week ago

    A number of miniOrange plugins have recently been found to be vulnerable, as outlined under CVE-2024-2172.
    The SSO plugin isn’t included (yet!) but I am rather concerned.
    Can we get some clarification and confirmation on whether the SSO plugin is impacted by CVE-2024-2172 or not?

    NVD – CVE-2024-2172 (nist.gov)

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support anukasha

    (@anukasha)

    Hi there,

    Thank you for reaching out to us.

    We understand your concern. I want to reassure you that our SSO Plugin is not affected by the CVE-2024-2172 vulnerability.

    Additionally, I would like to mention that we consistently update and maintain our SSO plugin to guarantee its safety and security for all users.

    Please feel free to reach out if you have any further questions or concerns.

    Thanks,
    miniOrange

Viewing 1 replies (of 1 total)
  • The topic ‘Does CVE-2024-2172 impact miniOrange SSO?’ is closed to new replies.