Impact
The vulnerability resides in lemonldap‑ng versions up to 2.23.0, specifically in the CDC.pm library used by the SAML Common Domain Cookie Endpoint. By manipulating the "url" argument, an attacker can cause the application to redirect the user to an arbitrary external site. This flaw is classified as CWE‑601 and can be triggered remotely by sending a crafted HTTP request. The vendor has fixed the issue in lemonldap‑ng 2.23.1; currently CDC is rarely used, so the overall impact is considered low.
Affected Systems
The affected product is lemonldap‑ng, a single sign‑on solution for web applications. Versions affected include all releases up to and including 2.23.0. No specific minor or patch versions are listed beyond this range.
Risk and Exploitability
The CVSS score of 5.3 indicates a moderate impact, and the EPSS score is not available, meaning current estimated exploit probability is unknown. The vulnerability is publicly available but has already been fixed in lemonldap‑ng 2.23.1; however, because CDC is rarely used, the overall impact is considered low. Attackers could still exploit it remotely by sending a crafted HTTP request that manipulates the "url" parameter, resulting in a redirection to an external domain. The flaw is not listed in CISA KEV.
OpenCVE Enrichment