A vulnerability classified as very critical was found in VMware Pinniped up to 0.46.0. This vulnerability affects unknown code of the file pkg/apis/identityprovider/v1alpha1/active_directory_identity_provider_types.go of the component Group Search Handler. The manipulation of the argument groupName results in improper input validation.
This vulnerability is known as CVE-2026-59269. It is possible to launch the attack remotely. No exploit is available.