pkg:PyPI/oauthenticator

9 total CVEsHIGH5MEDIUM4

✅ Check your installed version

All known vulnerabilities

  • HIGH8.8CVE-2026-33175Auth0OAuthenticator has an Authentication Bypass via Unverified Email Claims
    from 0, < 17.4.0
  • HIGH8.8CVE-2018-7206JupyterHub OAuthenticator elevation of privilege
    from 0, < 1845c0e4b1bff3462c91c3108c85205acd3c75a2 | >= 0.6, < 0.6.2, >= 0.7, < 0.7.3
  • HIGH8.8CVE-2018-7206JupyterHub OAuthenticator elevation of privilege
    >= 0.6, < 0.6.2
  • HIGH8.1CVE-2024-37300Globus `identity_provider` restriction ignored when used with `allow_all` in JupyterHub 5.0
    from 0, < 16.3.1
  • HIGH7.5CVE-2024-29033GoogleOAuthenticator.hosted_domain incorrectly verifies membership of an Google organization/workspace
    from 0, < 16.3.0
  • MEDIUM6.3CVE-2020-26250Base class whitelist configuration ignored in OAuthenticator
    from 0, < a4aac191c16cf6281f3d346615aefa75702b02d7 | >= 0.12.0, < 0.12.2
  • MEDIUM6.3CVE-2020-26250Base class whitelist configuration ignored in OAuthenticator
    >= 0.12.0, < 0.12.2
  • MEDIUM4.2CVE-2022-31027Authorization Bypass Through User-Controlled Key when using CILogonOAuthenticator oauthenticator
    from 0, < 15.0.0
  • MEDIUM4.2CVE-2022-31027Authorization Bypass Through User-Controlled Key when using CILogonOAuthenticator oauthenticator
    from 0, < 15.0.0