Authentication Bypass Vulnerability in OAuth2 Proxy by Oauth2-Proxy
CVE-2026-40575

9.1CRITICAL

Key Information:

Vendor: Oauth2-proxy
Status: Oauth2-proxy
Vendor: CVE Published:; 21 April 2026

🔔 Create Oauth2-proxy Vulnerability Alert

What is CVE-2026-40575?

OAuth2 Proxy, a tool for managing authentication using OAuth2 providers, has a vulnerability where affected versions (7.5.0 to 7.15.1) may improperly handle the client-supplied 'X-Forwarded-Uri' header. When 'reverse-proxy' mode is enabled alongside 'skip-auth-regex' or 'skip-auth-route', it allows an attacker to spoof this header. This can lead to the bypassing of authentication mechanisms, permitting unauthorized access to protected resources. Users running specific configurations are strongly encouraged to update to version 7.15.2 or implement essential workarounds to secure their deployments.

Affected Version(s)

oauth2-proxy >= 7.5.0, < 7.15.2

References

https://github.com/oauth2-proxy/oauth2-proxy/security/adv...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 14, 2026

CVE-2026-40575 Data

JSON