A vulnerability categorized as critical has been discovered in OpenIdentityPlatform OpenAM 15.0.4/16.0.0 . This vulnerability affects unknown code. The manipulation of the argument _queryId results in ldap injection. This vulnerability is known as CVE-2026-41573 . It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.