npm package
@better-auth/oauth-provider
pkg:npm/%40better-auth/oauth-provider
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-41427 | Med | 6.5 | >= 1.4.8-beta.7, < 1.6.5 | 1.6.5 | Apr 24, 2026 | Better Auth is an authentication and authorization library for TypeScript. Prior to 1.6.5, the clientPrivileges option documents a create action, but the OAuth client creation endpoints did not invoke the hook before persisting new clients. Deployments that configured clientPrivi |
- affected >= 1.4.8-beta.7, < 1.6.5fixed 1.6.5
Better Auth is an authentication and authorization library for TypeScript. Prior to 1.6.5, the clientPrivileges option documents a create action, but the OAuth client creation endpoints did not invoke the hook before persisting new clients. Deployments that configured clientPrivi