VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/oauth2-proxy/oauth2-proxy/v7

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-41059 high 8.2 8.2 1mo ago OAuth2 Proxy has an Authentication Bypass via Fragment Confusion in skip_auth_routes and skip_auth_regex golang
CVE-2026-40574 medium 6.8 6.8 1mo ago OAuth2 Proxy has an Authorization Bypass in Email Domain Validation via Malformed Multi-@ Email Claims golang