Lucene search
K

7 matches found

OSV
OSV
added 2026/03/04 9:19 p.m.4 views

GHSA-92MV-8F8W-WQ52 traefik CVE-2024-45410 fix bypass: lowercase `Connection` tokens can delete traefik-managed forwarded identity headers (for example, `X-Real-Ip`)

Impact There is a potential vulnerability in Traefik managing the Connection header with X-Forwarded headers. When Traefik processes HTTP/1.1 requests, the protection put in place to prevent the removal of Traefik-managed X-Forwarded headers such as X-Real-Ip, X-Forwarded-Host, X-Forwarded-Port,...

7.5CVSS6AI score0.00467EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/03/04 9:19 p.m.4 views

traefik CVE-2024-45410 fix bypass: lowercase `Connection` tokens can delete traefik-managed forwarded identity headers (for example, `X-Real-Ip`)

Impact There is a potential vulnerability in Traefik managing the Connection header with X-Forwarded headers. When Traefik processes HTTP/1.1 requests, the protection put in place to prevent the removal of Traefik-managed X-Forwarded headers such as X-Real-Ip, X-Forwarded-Host, X-Forwarded-Port,...

9.8CVSS6AI score0.01513EPSS
Exploits0References5Affected Software2
OPENSUSE Linux
OPENSUSE Linux
added 2024/09/26 12:0 a.m.5 views

traefik2-2.11.10-1.1 on GA media (moderate)

traefik2-2.11.10-1.1 on GA media Announcement ID: openSUSE-SU-2024:14367-1 Rating: moderate Cross-References: CVE-2024-45410 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

9.8CVSS6.9AI score0.01513EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2024/09/25 12:0 a.m.4 views

traefik-3.1.4-1.1 on GA media (moderate)

traefik-3.1.4-1.1 on GA media Announcement ID: openSUSE-SU-2024:14365-1 Rating: moderate Cross-References: CVE-2024-45410 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the traefik-3.1.4-1.1...

9.8CVSS6.9AI score0.01513EPSS
Exploits0
Cvelist
Cvelist
added 2024/09/19 10:51 p.m.472 views

CVE-2024-45410 HTTP client can remove the X-Forwarded headers in Traefik

Traefik is a golang, Cloud Native Application Proxy. When a HTTP request is processed by Traefik, certain HTTP headers such as X-Forwarded-Host or X-Forwarded-Port are added by Traefik before the request is routed to the application. For a HTTP client, it should not be possible to remove or modif...

9.8CVSS0.01513EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/19 10:51 p.m.15 views

CVE-2024-45410 HTTP client can remove the X-Forwarded headers in Traefik

Traefik is a golang, Cloud Native Application Proxy. When a HTTP request is processed by Traefik, certain HTTP headers such as X-Forwarded-Host or X-Forwarded-Port are added by Traefik before the request is routed to the application. For a HTTP client, it should not be possible to remove or modif...

9.8CVSS6.8AI score0.01513EPSS
Exploits0References3
CVE
CVE
added 2024/09/19 10:51 p.m.153 views

CVE-2024-45410

Traefik vulnerability CVE-2024-45410 involves hop-by-hop header handling where X-Forwarded-Host/X-Forwarded-Port (and related headers) could be modified by a client in HTTP/1.1, enabling header manipulation that trusted backend apps may rely on for security decisions. The issue arises from how Tr...

9.8CVSS8.5AI score0.01513EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder