Package impact
Go / github.com/dexidp/dex
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-23656 | unknown | — | — | 2y ago | Dex discarding TLSconfig and always serves deprecated TLS 1.0/1.1 and insecure ciphers in github.com/dexidp/dex | |||
| CVE-2022-39222 | unknown | — | — | 4y ago | Dex vulnerable to Man-in-the-Middle allowing ID token capture via intercepted authorization code | |||
| CVE-2020-26290 | unknown | — | — | 5y ago | Critical security issues in XML encoding in github.com/dexidp/dex | |||
| CVE-2020-27847 | unknown | — | — | 5y ago | Authentication Bypass in dex |