github.com/bitly/oauth2_proxy
Go2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting github.com/bitly/oauth2_proxypage 1 of 1
- CVE-2017-1000069HIGHCVSS 8.8EG 8.8✓ Fixed in 2.2.02017-07-17
CSRF in Bitly oauth2_proxy 2.1 during authentication flow
- CVE-2017-1000070MEDIUMCVSS 6.1EG 6.1✓ Fixed in 2.2.02017-07-17
The Bitly oauth2_proxy in version 2.1 and earlier was affected by an open redirect vulnerability during the start and termination of the 2-legged OAuth flow. This issue was caused by improper input validation and a violation of RFC-6819
Check whether github.com/bitly/oauth2_proxy is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/bitly/oauth2_proxy CVEs against the assets you own.
Start Free Scan →