Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
Go/github.com/oauth2-proxy/oauth2-proxy — 9 CVEs · VulnScope
pkg:Go/
github.com/oauth2-proxy/oauth2-proxy
9 total CVEs
CRITICAL
2
HIGH
2
MEDIUM
5
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.1
CVE-2026-34457
OAuth2 Proxy: Health Check User-Agent Matching Bypasses Authentication in auth_request Mode
from 0, <= 3.2.0
CRITICAL
9.1
CVE-2025-54576
OAuth2-Proxy has authentication bypass in oauth2-proxy skip_auth_routes due to Query Parameter inclusion
from 0
HIGH
8.5
CVE-2025-64484
OAuth2-Proxy vulnerable to header smuggling via underscore, leading to potential privilege escalation
from 0
HIGH
7.1
Open Redirect in OAuth2 Proxy
from 0, < 5.1.1
MEDIUM
5.9
Open Redirect in OAuth2 Proxy
from 0, < 5.0.0
MEDIUM
5.5
Incorrect authorization in OAuth2-Proxy
from 0
MEDIUM
5.4
Subdomain checking of whitelisted domains could allow unintended redirects
from 0
MEDIUM
5.4
Subdomain checking of whitelisted domains could allow unintended redirects
from 0, <= 3.2.0
MEDIUM
4.3
Open Redirect in OAuth2 Proxy
>= 5.1.1, < 6.0.0
CVE-2020-11053
CVE-2020-5233
CVE-2021-21411
CVE-2021-21291
CVE-2021-21291
CVE-2020-4037