Auth0 Security Bulletins

List of bulletins addressing security vulnerabilities in Auth0 software.

This page contains a list of all the published security vulnerabilities of Auth0 software.

Each bulletin contains a description of the vulnerability, how to identify if you are affected, and what to do to fix it.

Bulletins

Date Bulletin number Title Affected software
December 4, 2017 CVE 2017-17068 Security update for auth0.js popup callback vulnerability Auth0.js