CVE-2026-31982

Summary

An Open Redirect vulnerability was discovered in the SAML Single Sign-On functionality due to insufficient validation of a user-controlled redirection parameter. An unauthenticated attacker can craft a request to the SAML sign-in endpoint and poison the cached SAML redirection for other users who subsequently initiate SAML Single Sign-On, enabling phishing and credential-theft attacks, as well as disrupting SAML authentication for all affected users.

Affected Software

VendorProductVersion RangeStatus
Nozomi NetworksGuardian0 < 26.2.0affected
Nozomi NetworksCMC0 < 26.2.0affected

Weaknesses

  • CWE-601: CWE-601 URL redirection to untrusted site ('open redirect')

Workarounds

Use internal firewall features to limit access to the web management interface.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References