Moderate severity6.5NVD Advisory· Published Jul 2, 2026
contour: Contour: JWT verification bypass allows unauthorized access via HTTPProxy misconfiguration
CVE-2026-50149
Description
contour: Contour: JWT verification bypass allows unauthorized access via HTTPProxy misconfiguration
Affected products
7- osv-coords6 versionspkg:apk/chainguard/external-dns-0.20pkg:apk/chainguard/external-dns-0.21pkg:apk/chainguard/external-dns-fips-0.20pkg:apk/chainguard/external-dns-fips-0.21pkg:apk/wolfi/external-dns-0.20pkg:apk/wolfi/external-dns-0.21
< 0.20.0-r20+ 5 more
- (no CPE)range: < 0.20.0-r20
- (no CPE)range: < 0.21.0-r11
- (no CPE)range: < 0.20.0-r19
- (no CPE)range: < 0.21.0-r8
- (no CPE)range: < 0.20.0-r20
- (no CPE)range: < 0.21.0-r11
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.