IdentityServer — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in IdentityServer, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-49755	Duende IdentityServer has insufficient validation of DPoP cnf claim in Local APIs CWE-287	3.1	Low	2024-10-28
CVE-2024-39694	Duende IdentityServer Open Redirect vulnerability CWE-601	4.7	Medium	2024-07-31

All 2 known CVE vulnerabilities affecting IdentityServer with full Chinese analysis, references, and POCs where available.