pkg:Go/github.com/dadrus/heimdall
5 total CVEsHIGH2
✅ Check your installed version
All known vulnerabilities
HIGH8.2CVE-2026-32811Heimdall: Path received via Envoy gRPC corrupted when containing query string >= 0.7.0-alpha, < 0.17.11
HIGH8.2CVE-2026-32811Heimdall: Path received via Envoy gRPC corrupted when containing query string >= 0.7.0-alpha, < 0.17.11
—CVE-2026-42274Heimdall has an authorization bypass via path normalization mismatch from 0, < 0.17.14
—CVE-2026-42273Heimdall: Case-sensitive host matching may lead to policy bypass from 0, < 0.17.14
—CVE-2026-42272Heimdall: Case-sensitive handling of URL-encoded slashes may lead to inconsistent path interpretation from 0, < 0.17.14