Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

pomerium — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting pomerium. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by pomerium:pomerium
CVE IDTitleCVSSSeverityPublished
CVE-2024-47616 Pomerium's service account access token may grant unintended access to databroker API — pomeriumCWE-863 6.8 Medium2024-10-02
CVE-2024-39315 Pomerium exposed OAuth2 access and ID tokens in user info endpoint response — pomeriumCWE-201 5.7 Medium2024-07-02
CVE-2023-33189 Incorrect Authorization with specially crafted requests — pomeriumCWE-285 10.0 Critical2023-05-30
CVE-2022-24797 Exposure of Sensitive Information in Pomerium — pomeriumCWE-200 6.5 Medium2022-03-31
CVE-2021-41230 OIDC claims not updated from Identity Provider in Pomerium — pomeriumCWE-863 5.3 Medium2021-11-05
CVE-2021-39206 Incorrect Authorization with specially crafted requests — pomeriumCWE-863 8.6 High2021-09-09
CVE-2021-39204 Excessive CPU usage in Pomerium — pomeriumCWE-834 7.5 High2021-09-09
CVE-2021-39162 Incorrect handling of H2 GOAWAY + SETTINGS frames — pomeriumCWE-754 8.6 High2021-09-09

This page lists every published CVE security advisory associated with pomerium. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.