CVE-2026-42350

MEDIUM

Kargo: Open Redirect in UI OIDC Login Flow via redirectTo Query Parameter

Title source: cna
STIX 2.1

Description

Kargo manages and automates the promotion of software artifacts. Prior to versions 1.7.10, 1.8.13, 1.9.8, and 1.10.2, Kargo is vulnerable to open redirect in UI OIDC login flow via the redirectTo query parameter. This issue has been patched in versions 1.7.10, 1.8.13, 1.9.8, and 1.10.2.

References (1)

Core 1
Core References

Scores

CVSS v4 5.1
EPSS 0.0024
EPSS Percentile 14.8%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-601
Status published
Products (4)
akuity/kargo < 1.7.10
akuity/kargo >= 1.10.0-rc.1, < 1.10.2
akuity/kargo >= 1.8.0-rc.1, < 1.8.13
akuity/kargo >= 1.9.0-rc.1, < 1.9.8
Published May 08, 2026
Tracked Since May 09, 2026