pkg:Go/github.com/ory/oathkeeper

All known vulnerabilities

• CRITICAL10.0CVE-2026-33494Ory Oathkeeper has a path traversal authorization bypass in github.com/ory/oathkeeper
  from 0, < 0.40.10-0.20260320084758-8e0002140491
• CRITICAL10.0CVE-2026-33494Ory Oathkeeper has a path traversal authorization bypass in github.com/ory/oathkeeper
  from 0, < 0.40.10-0.20260320084758-8e0002140491
• HIGH8.1CVE-2026-33496Ory Oathkeeper has an authentication bypass by cache key confusion in github.com/ory/oathkeeper
  from 0, < 0.40.10-0.20260320084801-198a2bc82a99
• HIGH8.1Ory Oathkeeper has an authentication bypass by cache key confusion in github.com/ory/oathkeeper
  from 0, < 0.40.10-0.20260320084801-198a2bc82a99
• HIGH7.5Incorrect Authorization in ORY Oathkeeper in github.com/ory/oathkeeper
  >= 0.38.0-beta.2, < 0.38.12-beta.1
• HIGH7.5Incorrect Authorization in ORY Oathkeeper in github.com/ory/oathkeeper
  >= 0.38.0-beta.2, < 0.38.12-beta.1
• HIGH7.5Incorrect Authorization in ORY Oathkeeper in github.com/ory/oathkeeper
  >= 0.38.0-beta.2, < 0.38.12-beta.1
• MEDIUM6.5Ory Oathkeeper has an authentication bypass by usage of untrusted header in github.com/ory/oathkeeper
  from 0, < 0.40.10-0.20260320084810-e9acca14a04d
• MEDIUM6.5Ory Oathkeeper has an authentication bypass by usage of untrusted header in github.com/ory/oathkeeper
  from 0, < 0.40.10-0.20260320084810-e9acca14a04d