1e

Top products

The 12 most recently published vulnerabilities affecting 1e.

• CVE-2025-1683Symbolic Link Exploit in 1E Client's - Nomad module allows Arbitrary File Deletion7.8Mar 12, 2025
• CVE-2024-7211The Duende Identity Server based component in 1E Platform may allow URL redirections to untrusted websites.4.7Aug 1, 2024
• CVE-2023-59641E-Exchange-DisplayMessage instruction allows for arbitrary code execution9.9Nov 6, 2023
• CVE-2023-451631E-Exchange-CommandLinePing instruction before v18.1 allows for arbitrary code execution9.9Nov 6, 2023
• CVE-2023-451611E-Exchange-URLResponseTime instruction before v20.1 allows arbitrary code execution9.9Nov 6, 2023
• CVE-2023-45162Blind SQL vulnerability in 1E platform9.9Oct 13, 2023
• CVE-2023-45160Elevated Temp Directory Execution in 1E Client8.8Oct 5, 2023
• CVE-2023-451591E Client installer can perform arbitrary file deletion on protected files8.4Oct 5, 2023
• CVE-2020-27645The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users an...8.8Dec 29, 2020
• CVE-2020-27644The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users an...8.8Dec 29, 2020
• CVE-2020-27643The %PROGRAMDATA%\1E\Client directory in 1E Client 5.0.0.745 and 4.1.0.267 allows remote authenticated users and local users to create and modify files in protected directories (where they would no...6.5Dec 29, 2020
• CVE-2020-16268The MSI installer in 1E Client 4.1.0.267 and 5.0.0.745 allows remote authenticated users and local users to gain elevated privileges via the repair option. This applies to installations that have a...8.8Dec 29, 2020