Known Vulnerabilities for Oauth2 Proxy by Oauth2 Proxy Project
Listed below are 10 of the newest known vulnerabilities associated with "Oauth2 Proxy" by "Oauth2 Proxy Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41059 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 have a con... | Not Provided | 2026-04-22 | 2026-04-22 |
| CVE-2026-40575 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 may trust ... | Not Provided | 2026-04-22 | 2026-04-22 |
| CVE-2026-40574 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-34457 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions prior to 7.15.2 contain a confi... | Not Provided | 2026-04-14 | 2026-04-15 |
| CVE-2026-34454 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. A regression introduced in 7.11.0 preven... | Not Provided | 2026-04-14 | 2026-04-15 |
| CVE-2021-21411 json | OAuth2-Proxy is an open source reverse proxy that provides authentication with Google, Github or other providers. The `--gitl... | 5.5 - MEDIUM | 2021-03-26 | 2021-04-06 |
| CVE-2021-21291 json | OAuth2 Proxy is an open-source reverse proxy and static file server that provides authentication using Providers (Google, Git... | 6.1 - MEDIUM | 2021-02-02 | 2021-02-08 |
| CVE-2020-11053 json | In OAuth2 Proxy before 5.1.1, there is an open redirect vulnerability. Users can provide a redirect address for the proxy to ... | 6.1 - MEDIUM | 2020-05-07 | 2020-05-13 |
| CVE-2020-5233 json | OAuth2 Proxy before 5.0 has an open redirect vulnerability. Authentication tokens could be silently harvested by an attacker.... | 6.1 - MEDIUM | 2020-01-30 | 2020-04-09 |
| CVE-2020-4037 json | In OAuth2 Proxy from version 5.1.1 and less than version 6.0.0, users can provide a redirect address for the proxy to send th... | 5.4 - MEDIUM | 2020-06-29 | 2020-07-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 7.0.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 6.1.1 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 6.1.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 6.0.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 5.1.1 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 5.1.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 5.0.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 4.1.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 4.0.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 3.2.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 3.1.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 3.0.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 2.2 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 2.1 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 2.0.1 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 2.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 1.1.1 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 1.1 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 1.0 | |||
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 0.1 |