VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/oauth2-proxy/oauth2-proxy/v7

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-40575 critical 9.1 9.1 1mo ago OAuth2 Proxy has an Authentication Bypass via X-Forwarded-Uri Header Spoofing golang
CVE-2026-40574 medium 6.8 6.8 1mo ago OAuth2 Proxy has an Authorization Bypass in Email Domain Validation via Malformed Multi-@ Email Claims golang