Known Vulnerabilities for products from Openfga
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Openfga".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41131 json | Not Provided | 2026-04-22 | 2026-04-22 | |
| CVE-2026-40293 json | Not Provided | 2026-04-17 | 2026-04-20 | |
| CVE-2026-34972 json | OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzib... | Not Provided | 2026-04-06 | 2026-04-20 |
| CVE-2026-33729 json | OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzib... | Not Provided | 2026-03-27 | 2026-04-14 |
| CVE-2024-23820 json | 6.5 - MEDIUM | 2024-01-26 | 2024-02-01 | |
| CVE-2023-45810 json | OpenFGA is a flexible authorization/permission engine built for developers and inspired by Google Zanzibar. Affected versions... | 7.5 - HIGH | 2023-10-17 | 2023-10-25 |
| CVE-2023-43645 json | OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA is vulnerable to ... | 5.9 - MEDIUM | 2023-09-27 | 2023-10-02 |
| CVE-2023-40579 json | OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar. Some end users of OpenFGA... | 6.5 - MEDIUM | 2023-08-25 | 2023-08-31 |
| CVE-2023-35933 json | OPenFGA is an open source authorization/permission engine built for developers. OpenFGA versions v1.1.0 and prior are vulnera... | 7.5 - HIGH | 2023-06-26 | 2023-07-06 |
| CVE-2022-39352 json | OpenFGA is a high-performance authorization/permission engine inspired by Google Zanzibar. Versions prior to 0.2.5 are vulner... | 9.8 - CRITICAL | 2022-11-08 | 2023-11-07 |
| CVE-2022-39342 json | OpenFGA is an authorization/permission engine. Versions prior to version 0.2.4 are vulnerable to authorization bypass under c... | 9.8 - CRITICAL | 2022-10-25 | 2023-11-07 |
| CVE-2022-39341 json | OpenFGA is an authorization/permission engine. Versions prior to version 0.2.4 are vulnerable to authorization bypass under c... | 9.8 - CRITICAL | 2022-10-25 | 2023-06-27 |
| CVE-2022-39340 json | OpenFGA is an authorization/permission engine. Prior to version 0.2.4, the `streamed-list-objects` endpoint was not validatin... | 5.3 - MEDIUM | 2022-10-25 | 2023-06-27 |
| CVE-2022-23542 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-12-20 | 2023-11-07 |