PT-2026-40949 · Datahub · Datahub

Brett Gervasoni

·

Published

2026-05-14

·

Updated

2026-05-14

·

CVE-2026-44501

CVSS v3.1

7.1

High

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
Name of the Vulnerable Software and Affected Versions DataHub versions prior to 1.5.0.3
Description The DataHub frontend (datahub-frontend-react) deserializes attacker-controlled Java objects from the REDIRECT URL HTTP cookie during the OIDC callback flow without integrity protection, such as HMAC or encryption. This issue affects the 'GET /callback/oidc' endpoint. Successful exploitation requires the attacker to possess a valid user account in the configured OIDC identity provider.
Recommendations Update to version 1.5.0.3.

Exploit

Fix

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-44501
GHSA-RJF9-P49V-42C4

Affected Products

Datahub