github.com/openfga/openfga vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-55689Mediumgithub.com/openfga/openfga: OpenFGA: OIDC audience validation skipped when --authn-oidc-audience is unsetCVE-2026-55170Lowgithub.com/openfga/openfga: OpenFGA Improper Policy EnforcementCVE-2026-48096Mediumgithub.com/openfga/openfga: OpenFGA has cache-key delimiter injection in shared-iterator and v2 iterator that caches enables…CVE-2026-41131Mediumgithub.com/openfga/openfga: OpenFGA has Improper Policy EnforcementCVE-2026-40293Mediumgithub.com/openfga/openfga: OpenFGA: Unauthenticated playground endpoint discloses preshared API key in HTML responseCVE-2026-34972Mediumgithub.com/openfga/openfga: OpenFGA's BatchCheck within-request deduplication produces incorrect authorization decisions via…CVE-2026-33729Mediumgithub.com/openfga/openfga: OpenFGA has an Authorization Bypass through cached keysCVE-2026-24851Mediumgithub.com/openfga/openfga: OpenFGA Improper Policy EnforcementCVE-2025-64751Mediumgithub.com/openfga/openfga: OpenFGA Improper Policy EnforcementCVE-2025-55213Mediumgithub.com/openfga/openfga: OpenFGA Authorization Bypass CVE-2025-48371Mediumgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2025-46331Mediumgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2025-25196Mediumgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2024-56323Mediumgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2024-42473Highgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2024-31452Highgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2024-23820Mediumgithub.com/openfga/openfga: OpenFGA denial of serviceCVE-2023-45810Highgithub.com/openfga/openfga: OpenFGA DoS vulnerabilityCVE-2023-43645Mediumgithub.com/openfga/openfga: OpenFGA Vulnerable to DoS from circular relationship definitionsCVE-2023-40579Mediumgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2023-35933Mediumgithub.com/openfga/openfga: OpenFGA vulnerable to denial of service due to circular relationshipCVE-2022-23542Highgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2022-39352Mediumgithub.com/openfga/openfga: OpenFGA Authorization BypassCVE-2022-39341Mediumgithub.com/openfga/openfga: OpenFGA Authorization Bypass via tupleset wildcardCVE-2022-39342Mediumgithub.com/openfga/openfga: OpenFGA Authorization Bypass

Stop the waste.
Protect your environment with Kodem.