VYPR

Maven package

org.openidentityplatform.openam/openam

pkg:maven/org.openidentityplatform.openam/openam

Vulnerabilities (1)

  • CVE-2026-33439CriApr 7, 2026
    affected < 16.0.6fixed 16.0.6

    Open Access Management (OpenAM) is an access management solution. Prior to 16.0.6, OpenIdentityPlatform OpenAM is vulnerable to pre-authentication Remote Code Execution (RCE) via unsafe Java deserialization of the jato.clientSession HTTP parameter. This bypasses the WhitelistObje