Known Vulnerabilities for Hydra by Ory
Listed below are 2 of the newest known vulnerabilities associated with "Hydra" by "Ory".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33504 | Ory Hydra is an OAuth 2.0 Server and OpenID Connect Provider. Prior to version 26.2.0, the listOAuth2Clients, listOAuth2Conse... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2025-49323 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themefic Hydra Booking ... | Not Provided | 2025-06-06 | 2026-04-01 |
| CVE-2020-5300 | In Hydra (an OAuth2 Server and OpenID Certified™ OpenID Connect Provider written in Go), before version 1.4.0+oryOS.17, whe... | 5.3 - MEDIUM | 2020-04-06 | 2020-04-07 |
| CVE-2019-8400 | ORY Hydra before v1.0.0-rc.3+oryOS.9 has Reflected XSS via the oauth2/fallbacks/error error_hint parameter. | 6.1 - MEDIUM | 2019-02-17 | 2019-02-20 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ory | Hydra | 1.4.2 | All | All | All |
| Application | Ory | Hydra | 1.4.1 | All | All | All |
| Application | Ory | Hydra | 1.4.0 | All | All | All |
| Application | Ory | Hydra | 1.3.2 | All | All | All |
| Application | Ory | Hydra | 1.3.1 | All | All | All |
| Application | Ory | Hydra | 1.3.0 | All | All | All |
| Application | Ory | Hydra | 1.2.3 | All | All | All |
| Application | Ory | Hydra | 1.2.2 | All | All | All |
| Application | Ory | Hydra | 1.2.1 | All | All | All |
| Application | Ory | Hydra | 1.2.0 | - | All | All |
| Application | Ory | Hydra | 1.2.0 | alpha1 | All | All |
| Application | Ory | Hydra | 1.2.0 | alpha2 | All | All |
| Application | Ory | Hydra | 1.2.0 | alpha3 | All | All |
| Application | Ory | Hydra | 1.1.1 | All | All | All |
| Application | Ory | Hydra | 1.1.0 | All | All | All |
| Application | Ory | Hydra | 1.0.9 | All | All | All |
| Application | Ory | Hydra | 1.0.8 | All | All | All |
| Application | Ory | Hydra | 1.0.7 | All | All | All |
| Application | Ory | Hydra | 1.0.6 | All | All | All |
| Application | Ory | Hydra | 1.0.5 | All | All | All |