Github.com/dexidp/dex
This hub aggregates every CVE we track for Github.com/dexidp/dex, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
3
Critical
1
High
0
In CISA KEV
Severity distribution
CRITICAL3HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Github.com/dexidp/dex.
- CVE-2024-23656Dex 2.37.0 is discarding TLSconfig and always serves deprecated TLS 1.0/1.1 and insecure ciphers7.5
- CVE-2022-39222OAuth authorization code exposure in Dex9.3
- CVE-2020-27847A vulnerability exists in the SAML connector of the github.com/dexidp/dex library used to process SAML Signature Validation. This flaw allows an attacker to bypass SAML authentication. The highest ...9.8
- CVE-2020-26290Critical security issues in XML encoding in Dex9.3
Product normalization is registry-driven with AI assist and human review. How it works