Known Vulnerabilities for products from Authlib
Listed below are 7 of the newest known vulnerabilities associated with the vendor "Authlib".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44681 json | Not Provided | 2026-05-27 | 2026-06-02 | |
| CVE-2026-41479 json | Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.10 and 1.7.1, Authlib's OAuth 2.0 aut... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-41425 json | Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on th... | Not Provided | 2026-04-24 | 2026-04-28 |
| CVE-2026-28802 json | Authlib is a Python library which builds OAuth and OpenID Connect servers. From version 1.6.5 to before version 1.6.7, previo... | Not Provided | 2026-03-06 | 2026-07-15 |
| CVE-2026-28498 json | Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a library-level vulnerabil... | Not Provided | 2026-03-16 | 2026-07-15 |
| CVE-2026-27962 json | Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a JWK Header Injection vul... | Not Provided | 2026-03-16 | 2026-07-15 |
| CVE-2025-68158 json | Authlib is a Python library which builds OAuth and OpenID Connect servers. In versions 1.0.0 through 1.6.5, cache-backed stat... | Not Provided | 2026-01-08 | 2026-03-30 |