CVE-2023-33189

CRITICAL10.0EPSS 0.58%

Pomerium vulnerable to Incorrect Authorization with specially crafted requests in github.com/pomerium/pomerium

Published: 5/26/2023Modified: 3/3/2026

Description

Pomerium vulnerable to Incorrect Authorization with specially crafted requests in github.com/pomerium/pomerium

Go/github.com/pomerium/pomerium>= 0.22.0, < 0.22.2
Go/github.com/pomerium/pomeriumfrom 0, < 0.17.4, >= 0.18.0, < 0.18.1, >= 0.19.0, < 0.19.2, >= 0.20.0, < 0.20.1, >= 0.21.0, < 0.21.4, >= 0.22.0, < 0.22.2

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL10.0	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N