GHSA-xq73-fvmr-jvmm: OpenAM Authentication Bypass via MSISDN LDAP Injection
An LDAP Injection vulnerability in the MSISDN authentication module of OpenAM Community Edition allows unauthenticated remote attackers to bypass authentication and obtain arbitrary sessions without a password. This affects versions prior to 16.1.1 when MSISDN authentication is enabled and reachable via the trusted gateway configuration. The vulnerability arises because user-supplied MSISDN values are concatenated directly into LDAP search filters. The issue has been patched in version 16.1.1.
AI Analysis
Technical Summary
OpenAM Community Edition through version 16.0.6 contains an LDAP Injection vulnerability (CWE-90) in its MSISDN authentication module. This flaw permits unauthenticated remote attackers to bypass authentication by injecting crafted MSISDN values into LDAP search filters, resulting in arbitrary session creation without password verification. The vulnerability requires that the MSISDN module be enabled in an authentication chain and accessible through the trusted-gateway list, which by default allows all traffic. The issue was fixed in OpenAM version 16.1.1.
Potential Impact
Successful exploitation allows an attacker to bypass authentication preemptively and gain a valid OpenAM session for any user matched by the injected LDAP query. This compromises authentication integrity and potentially grants unauthorized access to protected resources within affected realms using MSISDN authentication.
Mitigation Recommendations
An official fix is available in OpenAM Community Edition version 16.1.1. Users should upgrade to version 16.1.1 or later to remediate this vulnerability. No additional mitigations are specified beyond applying the patch.
GHSA-xq73-fvmr-jvmm: OpenAM Authentication Bypass via MSISDN LDAP Injection
Description
An LDAP Injection vulnerability in the MSISDN authentication module of OpenAM Community Edition allows unauthenticated remote attackers to bypass authentication and obtain arbitrary sessions without a password. This affects versions prior to 16.1.1 when MSISDN authentication is enabled and reachable via the trusted gateway configuration. The vulnerability arises because user-supplied MSISDN values are concatenated directly into LDAP search filters. The issue has been patched in version 16.1.1.
CVSS v4.0
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
OpenAM Community Edition through version 16.0.6 contains an LDAP Injection vulnerability (CWE-90) in its MSISDN authentication module. This flaw permits unauthenticated remote attackers to bypass authentication by injecting crafted MSISDN values into LDAP search filters, resulting in arbitrary session creation without password verification. The vulnerability requires that the MSISDN module be enabled in an authentication chain and accessible through the trusted-gateway list, which by default allows all traffic. The issue was fixed in OpenAM version 16.1.1.
Potential Impact
Successful exploitation allows an attacker to bypass authentication preemptively and gain a valid OpenAM session for any user matched by the injected LDAP query. This compromises authentication integrity and potentially grants unauthorized access to protected resources within affected realms using MSISDN authentication.
Mitigation Recommendations
An official fix is available in OpenAM Community Edition version 16.1.1. Users should upgrade to version 16.1.1 or later to remediate this vulnerability. No additional mitigations are specified beyond applying the patch.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-xq73-fvmr-jvmm
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-46619"]
- Ecosystems
- ["Maven"]
- Database Specific Severity
- HIGH
- Cvss Version
- 4.0
Threat ID: 6a3ef79427e9c79719ff7bf4
Added to database: 06/26/2026, 22:05:08 UTC
Last enriched: 06/26/2026, 22:18:52 UTC
Last updated: 06/26/2026, 22:18:52 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.