CVE-2024-41667 | OpenIdentityPlatform OpenAM up to 15.0.3 RealmOAuth2ProviderSettings.java getCustomLoginUrlTemplate code injection (GHSA-7726-43hg-m23v)

CVE-2024-41667 | OpenIdentityPlatform OpenAM up to 15.0.3 RealmOAuth2ProviderSettings.java getCustomLoginUrlTemplate code injection (GHSA-7726-43hg-m23v)

A vulnerability was found in OpenIdentityPlatform OpenAM up to 15.0.3. It has been rated as critical. This issue affects the function getCustomLoginUrlTemplate of the file RealmOAuth2ProviderSettings.java. The manipulation leads to code injection. The identification of this vulnerability is CVE-2024-41667. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.