7 matches found
CVE-2022-23469
Traefik is an open source HTTP reverse proxy and load balancer. Versions prior to 2.9.6 are subject to a potential vulnerability in Traefik displaying the Authorization header in its debug logs. In certain cases, if the log level is set to DEBUG, credentials provided using the Authorization heade...
Security fix for the ALT Linux 10 package traefik version 2.9.8-alt1
2.9.8-alt1 built Feb. 22, 2023 Alexey Shabalin in task 315371 Feb. 16, 2023 Alexey Shabalin - 2.9.8 Fixes: CVE-2022-23469, CVE-2022-46153, CVE-2022-41717...
FreeBSD : traefik -- multiple vulnerabilities (508da89c-78b9-11ed-854f-5404a68ad561)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 508da89c-78b9-11ed-854f-5404a68ad561 advisory. - Traefik is an open source HTTP reverse proxy and load balancer. Versions prior to 2.9.6 are...
CVE-2022-23469
creationtimestamp| type| source ---|---|--- 2022-12-09 00:12:49+00:00| seen| https://t.me/cibsecurity/54201 2025-04-22 16:03:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12891...
CVE-2022-23469 Authorization header displayed in the debug logs
Traefik is an open source HTTP reverse proxy and load balancer. Versions prior to 2.9.6 are subject to a potential vulnerability in Traefik displaying the Authorization header in its debug logs. In certain cases, if the log level is set to DEBUG, credentials provided using the Authorization heade...
CVE-2022-23469
Traefik (open source HTTP reverse proxy/load balancer) prior to version 2.9.6 is vulnerable to leaking credentials via the Authorization header in debug logs. The issue arises when log level is DEBUG, causing credentials sent in Authorization headers to be written to logs. Remediation per the sou...
traefik -- multiple vulnerabilities
The Traefik project reports: This update is recommended for all traefik users and provides following important security fixes: CVE-2022-23469: Authorization header displayed in the debug logs CVE-2022-46153: Routes exposed with an empty TLSOption in traefik...