CVE-2026-41573 | OpenIdentityPlatform OpenAM 15.0.4/16.0.0 _queryId ldap injection

Inserito da Angelo Barbosa | Giu 23, 2026 | CVE

A vulnerability categorized as critical has been discovered in OpenIdentityPlatform OpenAM 15.0.4/16.0.0. This vulnerability affects unknown code. The manipulation of the argument _queryId results in ldap injection.

This vulnerability is known as CVE-2026-41573. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-41573 | OpenIdentityPlatform OpenAM 15.0.4/16.0.0 _queryId ldap injection

Post correlati

CVE-2024-36406 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 redirect (GHSA-hcw8-p37h-8hrv)

CVE-2025-26158 | Kashipara Online Attendance Management System 1.0 manage-employee.php department cross site scripting

CVE-2023-43996 | mini-app on Line 13.6.1 Channel Access Token information disclosure

CVE-2024-57020 | TOTOLINK X5000R 9.1.0cu.2350_B20230313 setWiFiScheduleCfg sMinute os command injection