2.8.0

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-06	CVE-2022-39222	Missing Authorization vulnerability in Linuxfoundation DEX Dex is an identity service that uses OpenID Connect to drive authentication for other apps. network low complexity linuxfoundation CWE-862	6.5
2021-05-28	CVE-2020-27847	Improper Handling of Syntactically Invalid Structure vulnerability in Linuxfoundation DEX A vulnerability exists in the SAML connector of the github.com/dexidp/dex library used to process SAML Signature Validation. network low complexity linuxfoundation CWE-228 critical	9.8
2020-12-28	CVE-2020-26290	Improper Verification of Cryptographic Signature vulnerability in Linuxfoundation DEX Dex is a federated OpenID Connect provider written in Go. network linuxfoundation CWE-347	6.8