Skip to content

Vendor scorecard

Auth0

Auth0 security disclosure record — CVE volume, CVSS severity mix and product-category breakdown, sourced from the NIST NVD.

CPE: auth0

Product families
1
Open in latest
3

Inferred — see methodology

Last disclosure
May 27, 2026
01

Product categories

1 tracked

CVE volume, severity mix and the inferred latest shipping version per category.

CategoryCVEsOpenInferred latest
Identity PlatformIdentity & Access Managementauth0.js, jsonwebtoken, angular-jwt1530.4.0LOW
02

Recent CVEs

12 shown

Most recently published, newest first. Each ID links to its NVD record.

Recent CVEs affecting Auth0
CVESeverityCVSSPublished
CVE-2026-42280(opens NVD record)High
7.1
May 27, 2026
CVE-2022-23539(opens NVD record)Medium
5.9
Dec 23, 2022
CVE-2022-23540(opens NVD record)Medium
6.4
Dec 22, 2022
CVE-2022-23541(opens NVD record)Medium
5.0
Dec 22, 2022
CVE-2020-15125(opens NVD record)High
7.7
Jul 29, 2020
CVE-2020-5263(opens NVD record)Medium
5.5
Apr 9, 2020
CVE-2019-13483(opens NVD record)High
7.3
Jul 25, 2019
CVE-2018-15121(opens NVD record)High
8.8
Aug 29, 2018
CVE-2018-11537(opens NVD record)Medium
6.5
Jun 19, 2018
CVE-2015-9235(opens NVD record)Critical
9.8
May 29, 2018
CVE-2018-6874(opens NVD record)High
8.8
Apr 4, 2018
CVE-2018-6873(opens NVD record)Critical
9.8
Apr 4, 2018

14 CVEs · 1 product families