Known Vulnerabilities for Hydra by Hydra Project
Listed below are 1 of the newest known vulnerabilities associated with "Hydra" by "Hydra Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33504 | Ory Hydra is an OAuth 2.0 Server and OpenID Connect Provider. Prior to version 26.2.0, the listOAuth2Clients, listOAuth2Conse... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2025-49323 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themefic Hydra Booking ... | Not Provided | 2025-06-06 | 2026-04-01 |
| CVE-2019-17502 | Hydra through 0.1.8 has a NULL pointer dereference and daemon crash when processing POST requests that lack a Content-Length ... | 7.5 - HIGH | 2019-10-12 | 2019-10-17 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Hydra Project | Hydra | 0.1.8 | All | All | All |