CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-52003 – X-Forwarded-Prefix Header still allows for Open Redirect in traefik
https://notcve.org/view.php?id=CVE-2024-52003
29 Nov 2024 — Traefik (pronounced traffic) is an HTTP reverse proxy and load balancer. There is a vulnerability in Traefik that allows the client to provide the X-Forwarded-Prefix header from an untrusted source. This issue has been addressed in versions 2.11.14 and 3.2.1. Users are advised to upgrade. There are no known workarounds for this vulnerability. • https://github.com/traefik/traefik/pull/11253 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 9.8EPSS: 7%CPEs: 2EXPL: 1CVE-2024-45410 – HTTP client can remove the X-Forwarded headers in Traefik
https://notcve.org/view.php?id=CVE-2024-45410
19 Sep 2024 — Traefik is a golang, Cloud Native Application Proxy. When a HTTP request is processed by Traefik, certain HTTP headers such as X-Forwarded-Host or X-Forwarded-Port are added by Traefik before the request is routed to the application. For a HTTP client, it should not be possible to remove or modify these headers. Since the application trusts the value of these headers, security implications might arise, if they can be modified. For HTTP/1.1, however, it was found that some of theses custom headers can indeed... • https://github.com/jphetphoumy/traefik-CVE-2024-45410-poc • CWE-345: Insufficient Verification of Data Authenticity CWE-348: Use of Less Trusted Source •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-39321 – Traefik vulnerable to bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes
https://notcve.org/view.php?id=CVE-2024-39321
05 Jul 2024 — Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Versions 2.11.6, 3.0.4, and 3.1.0-rc3 contain a patch for this issue. No known workarounds are available. Traefik es un proxy inverso HTTP y un equilibrador de carga. • https://github.com/traefik/traefik/releases/tag/v2.11.6 • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-28869 – Possible denial of service vulnerability with Content-length header in Traefik
https://notcve.org/view.php?id=CVE-2024-28869
12 Apr 2024 — Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of service. This vulnerability has been addressed in version 2.11.2 and 3.0.0-rc5. Users are advised to upgrade. • https://doc.traefik.io/traefik/routing/entrypoints/#respondingtimeouts • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2023-47633 – Uncontrolled Resource Consumption in Traefik
https://notcve.org/view.php?id=CVE-2023-47633
04 Dec 2023 — Traefik is an open source HTTP reverse proxy and load balancer. The traefik docker container uses 100% CPU when it serves as its own backend, which is an automatically generated route resulting from the Docker integration in the default configuration. This issue has been addressed in versions 2.10.6 and 3.0.0-beta5. Users are advised to upgrade. There are no known workarounds for this vulnerability. • https://github.com/traefik/traefik/releases/tag/v2.10.6 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2023-47106 – Incorrect processing of fragment in the URL leads to Authorization Bypass in Traefik
https://notcve.org/view.php?id=CVE-2023-47106
04 Dec 2023 — Traefik is an open source HTTP reverse proxy and load balancer. When a request is sent to Traefik with a URL fragment, Traefik automatically URL encodes and forwards the fragment to the backend server. This violates RFC 7230 because in the origin-form the URL should only contain the absolute path and the query. When this is combined with another frontend proxy like Nginx, it can be used to bypass frontend proxy URI-based access control restrictions. This vulnerability has been addressed in versions 2.10.6 a... • https://datatracker.ietf.org/doc/html/rfc7230#section-5.3.1 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 5EXPL: 0CVE-2023-47124 – Denial of service whith ACME HTTPChallenge in Traefik
https://notcve.org/view.php?id=CVE-2023-47124
04 Dec 2023 — Traefik is an open source HTTP reverse proxy and load balancer. When Traefik is configured to use the `HTTPChallenge` to generate and renew the Let's Encrypt TLS certificates, the delay authorized to solve the challenge (50 seconds) can be exploited by attackers to achieve a `slowloris attack`. This vulnerability has been patch in version 2.10.6 and 3.0.0-beta5. Users are advised to upgrade. Users unable to upgrade should replace the `HTTPChallenge` with the `TLSChallenge` or the `DNSChallenge`. • https://doc.traefik.io/traefik/https/acme/#dnschallenge • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.8EPSS: 94%CPEs: 444EXPL: 17CVE-2023-44487 – HTTP/2 Rapid Reset Attack Vulnerability
https://notcve.org/view.php?id=CVE-2023-44487
10 Oct 2023 — The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. El protocolo HTTP/2 permite una denegación de servicio (consumo de recursos del servidor) porque la cancelación de solicitudes puede restablecer muchas transmisiones rápidamente, como se explotó en la naturaleza entre agosto y octubre de 2023. A flaw was found in handling multiplexed streams in the HTTP/2 protocol. ... • https://github.com/imabee101/CVE-2023-44487 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2023-29013 – HTTP header parsing could cause a deny of service
https://notcve.org/view.php?id=CVE-2023-29013
14 Apr 2023 — Traefik (pronounced traffic) is a modern HTTP reverse proxy and load balancer for deploying microservices. There is a vulnerability in Go when parsing the HTTP headers, which impacts Traefik. HTTP header parsing could allocate substantially more memory than required to hold the parsed headers. This behavior could be exploited to cause a denial of service. This issue has been patched in versions 2.9.10 and 2.10.0-rc2. • https://github.com/traefik/traefik/commit/4ed3964b3586565519249bbdc55eb1b961c08c49 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-46153 – Routes exposed with an empty TLSOption in traefik
https://notcve.org/view.php?id=CVE-2022-46153
08 Dec 2022 — Traefik is an open source HTTP reverse proxy and load balancer. In affected versions there is a potential vulnerability in Traefik managing TLS connections. A router configured with a not well-formatted TLSOption is exposed with an empty TLSOption. For instance, a route secured using an mTLS connection set with a wrong CA file is exposed without verifying the client certificates. Users are advised to upgrade to version 2.9.6. • https://doc.traefik.io/traefik/v2.9/https/tls/#tls-options • CWE-295: Improper Certificate Validation •