This page is for on-premise, enterprise Carousel 7 customers.
Release Notes
What's new and what's fixed!
Carousel 7.2.4
July 16, 2019
CSL-2804 - Carousel API Fetch URL can be exploited to access internal network devices: Improved security by adding an authorization layer to the Carousel API's rendering endpoints.
CSL-1684 - Webpage snapshots can pose security risk: Improved security by adding an authorization layer to the Carousel API's rendering endpoints.
CSL-2815 - Cloud instances are susceptible to rendering DDOS due to unauthenticated endpoints: The rendering API endpoints now require proper security authentication.