4 matches found
CVE-2026-48020 Traefik StripPrefix Route-Level Auth Bypass via Path Normalization
Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.48, 3.6.19, and 3.7.3, there is a high severity vulnerability in Traefik's StripPrefix middleware that allows an unauthenticated attacker to bypass route-level authentication and authorization. When a public router matches on a...
SUSE CVE-2026-48020
Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.48, 3.6.19, and 3.7.3, there is a high severity vulnerability in Traefik's StripPrefix middleware that allows an unauthenticated attacker to bypass route-level authentication and authorization. When a public router matches on a...
traefik-3.7.5-1.1 on GA media (moderate)
traefik-3.7.5-1.1 on GA media Announcement ID: openSUSE-SU-2026:11047-1 Rating: moderate Cross-References: CVE-2026-48020 CVE-2026-48491 CVE-2026-53622 Affected Products: openSUSE Tumbleweed An update that solves 3 vulnerabilities can now be installed. Description: These are all security issues...
traefik2-2.11.50-1.1 on GA media (moderate)
traefik2-2.11.50-1.1 on GA media Announcement ID: openSUSE-SU-2026:11045-1 Rating: moderate Cross-References: CVE-2026-48020 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...