Known Vulnerabilities for products from Oauth2 Proxy Project
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Oauth2 Proxy Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41059 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 have a con... | Not Provided | 2026-04-22 | 2026-04-27 |
| CVE-2026-40575 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 may trust ... | Not Provided | 2026-04-22 | 2026-04-27 |
| CVE-2026-40574 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass... | Not Provided | 2026-04-21 | 2026-04-27 |
| CVE-2026-34457 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions prior to 7.15.2 contain a confi... | Not Provided | 2026-04-14 | 2026-04-23 |
| CVE-2026-34454 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. A regression introduced in 7.11.0 preven... | Not Provided | 2026-04-14 | 2026-04-23 |
| CVE-2021-21411 json | OAuth2-Proxy is an open source reverse proxy that provides authentication with Google, Github or other providers. The `--gitl... | 5.5 - MEDIUM | 2021-03-26 | 2021-04-06 |
| CVE-2021-21291 json | OAuth2 Proxy is an open-source reverse proxy and static file server that provides authentication using Providers (Google, Git... | 6.1 - MEDIUM | 2021-02-02 | 2021-02-08 |
| CVE-2020-11053 json | In OAuth2 Proxy before 5.1.1, there is an open redirect vulnerability. Users can provide a redirect address for the proxy to ... | 6.1 - MEDIUM | 2020-05-07 | 2020-05-13 |
| CVE-2020-5233 json | OAuth2 Proxy before 5.0 has an open redirect vulnerability. Authentication tokens could be silently harvested by an attacker.... | 6.1 - MEDIUM | 2020-01-30 | 2020-04-09 |
| CVE-2020-4037 json | In OAuth2 Proxy from version 5.1.1 and less than version 6.0.0, users can provide a redirect address for the proxy to send th... | 5.4 - MEDIUM | 2020-06-29 | 2020-07-07 |
| CVE-2017-1000070 json | The Bitly oauth2_proxy in version 2.1 and earlier was affected by an open redirect vulnerability during the start and termina... | Not Provided | 2017-07-17 | 2025-04-20 |
| CVE-2017-1000069 json | CSRF in Bitly oauth2_proxy 2.1 during authentication flow | Not Provided | 2017-07-17 | 2025-04-20 |
Known software with vulnerabilities from Oauth2 Proxy Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Oauth2 Proxy Project | Oauth2 Proxy | 0.1 |