{}

{}

{}

{"acknowledgement": "This issue was discovered by \u00c0ngel Oll\u00e9 Bl\u00e1zquez (Red Hat).", "bugzilla": {"description": "rhacs: Red Hat Advanced Cluster Security (ACS): Open Redirect and Content Spoofing via OAuth callback endpoint", "id": "2452218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452218"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.4", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "status": "draft"}, "cwe": "CWE-601", "details": ["A flaw was found in Red Hat Advanced Cluster Security (ACS). An unauthenticated remote attacker can exploit a vulnerability in the login interface's OAuth callback endpoint by crafting a malicious URL. This URL, containing unvalidated `error` and `error_uri` parameters, allows the attacker to display arbitrary error messages, leading to content spoofing. Furthermore, the attacker can redirect victims to malicious domains, effectively performing an open redirect under the guise of the trusted application's user interface."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."}, "name": "CVE-2026-4981", "package_state": [{"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Fix deferred", "package_name": "advanced-cluster-security/rhacs-main-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}], "public_date": "2026-03-27T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-4981\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-4981"], "statement": "This Moderate impact vulnerability in Red Hat Advanced Cluster Security (ACS) allows an unauthenticated remote attacker to perform open redirect and content spoofing. By crafting a malicious URL with unvalidated parameters in the OAuth callback endpoint, an attacker can display arbitrary error messages and redirect users to malicious domains, appearing as the trusted application UI. This primarily affects user interaction with the login interface.", "threat_severity": "Moderate"}

{}