GHSA-7QJX-GP9H-65QJ
CVE Details
Visit the official vulnerability details page for GHSA-7QJX-GP9H-65QJ to learn more.
Initial Publication
06/09/2026
Last Update
06/09/2026
Third Party Dependency
github.com/dexidp/dex
NIST CVE Summary
Dex: Token-exchange endpoint is missing AllowedConnectors enforcement
CVE Severity
Our Official Summary
Investigation is ongoing to determine how this vulnerability affects our products.
Status
Open
Affected Products & Versions
| Version | PaletteAI | PaletteAI VerteX |
|---|---|---|
| 1.1.6 | ⚠️ Impacted | ⚠️ Impacted |
| 1.0.7 | ⚠️ Impacted | ⚠️ Impacted |
Revision History
No revisions available.