2491214 – (CVE-2026-12804) CVE-2026-12804 lemonldap-ng: Lemonldap-NG: Open Redirect via URL manipulation in SAML Common Domain Cookie Endpoint

Bug 2491214 (CVE-2026-12804) - CVE-2026-12804 lemonldap-ng: Lemonldap-NG: Open Redirect via URL manipulation in SAML Common Domain Cookie Endpoint

Summary: CVE-2026-12804 lemonldap-ng: Lemonldap-NG: Open Redirect via URL manipulation...

Keywords:
Status:	NEW
Alias:	CVE-2026-12804
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2491282 2491283
Blocks:
TreeView+	depends on / blocked

Reported:	2026-06-21 20:01 UTC by OSIDB Bzimport
Modified:	2026-06-22 07:40 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-06-21 20:01:14 UTC

A vulnerability was detected in lemonldap-ng up to 2.23.0. Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.pm of the component SAML Common Domain Cookie Endpoint. Performing a manipulation of the argument url results in open redirect. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Comment 2 Xavier Bachelot 2026-06-22 07:40:52 UTC

Upstream fix : https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/979

This functionality is barely used, the impact is very low.

Note You need to log in before you can comment on or make changes to this bug.