EUVD-2022-1966

Malicious code in bioql PyPI...

GO-2022-0808 Improper Certificate Handling in github.com/containous/traefik

Improper Certificate Handling in github.com/containous/traefik...

GO-2022-0774 Improper Authentication in github.com/containous/traefik

Improper Authentication in github.com/containous/traefik...

Containous Traefik Security Vulnerability

Containous Traefik is a reverse proxy and load balancer from Containous, USA. A security vulnerability exists in Traefik v2.10.5 and earlier, v3.0.0-beta4 and earlier, which can be exploited by an attacker to conduct a Slowloris attack when Traefik is configured to generate and update certificate...

Containous Traefik Resource Management Error Vulnerability

Containous Traefik is a reverse proxy and load balancer from Containous USA. Traefik suffers from a resource management error vulnerability that stems from allowing 100% CPU usage...

Containous Traefik 信任管理问题漏洞

Containous Traefik is a reverse proxy and load balancer from US-based Containous. A trust management issue vulnerability exists in Containous Traefik versions prior to 2.9.6, which stems from a potential issue when managing TLS connections, where routers configured with an incorrectly formatted...

GHSA-R3FQ-CMMW-CPMM Containous Traefik Exposes Password Hashes

types/types.go in Containous Traefik 1.7.x through 1.7.11, when the --api flag is used and the API is publicly reachable and exposed without sufficient access control which is contrary to the API documentation, allows remote authenticated users to discover password hashes by reading the Basic HTT...

Containous Traefik Exposes Password Hashes

types/types.go in Containous Traefik 1.7.x through 1.7.11, when the --api flag is used and the API is publicly reachable and exposed without sufficient access control which is contrary to the API documentation, allows remote authenticated users to discover password hashes by reading the Basic HTT...

Containous Traefik 安全漏洞

Containous Traefik is a reverse proxy and load balancer from the US company Containous. versions prior to Traefik 2.4.13 have a security vulnerability that can be exploited by attackers to elevate privileges...

Containous Traefik Security Vulnerability

Containous Traefik is a reverse proxy and load balancer from Containous USA. A security vulnerability exists in Containous Traefik. The vulnerability stems from the software allowing IFRAME to be loaded from other domains.The following products and versions are affected:Containous Traefik 2.4.3...

Containous Traefik Trust Management Issues Vulnerability (CNVD-2021-18240)

Containous Traefik is a reverse proxy and load balancer from Containous USA. A vulnerability in Containous Traefik version 2.x exists due to a trust management issue. The vulnerability stems from the lack of an effective trust management mechanism in a networked system or product. An attacker can...

CVE-2019-12452

types/types.go in Containous Traefik 1.7.x through 1.7.11, when the --api flag is used and the API is publicly reachable and exposed without sufficient access control which is contrary to the API documentation, allows remote authenticated users to discover password hashes by reading the Basic HTT...

Design/Logic Flaw

types/types.go in Containous Traefik 1.7.x through 1.7.11, when the --api flag is used and the API is publicly reachable and exposed without sufficient access control which is contrary to the API documentation, allows remote authenticated users to discover password hashes by reading the Basic HTT...

CVE-2019-12452

CVE-2019-12452 affects Containous Traefik 1.7.x (1.7.11 and earlier). When --api is enabled and publicly reachable with insufficient access control, remote authenticated users can read the JSON response of /api to discover password hashes from Basic/Digest HTTP Authentication and can read a Clien...

CVE-2019-12452

types/types.go in Containous Traefik 1.7.x through 1.7.11, when the --api flag is used and the API is publicly reachable and exposed without sufficient access control which is contrary to the API documentation, allows remote authenticated users to discover password hashes by reading the Basic HTT...

PT-2019-12799 · Containous +1 · Traefik +1

Name of the Vulnerable Software and Affected Versions: Containous Traefik versions 1.7.x through 1.7.11 Description: The issue allows remote authenticated users to discover password hashes by reading the Basic HTTP Authentication or Digest HTTP Authentication section, or discover a key by reading...

FreeBSD : Containous Traefik -- exposes the configuration and secret (fe818607-b5ff-11e8-856b-485b3931c969)

MITRE reports : Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the...

CVE-2018-15598

Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable...

CVE-2018-15598

Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable...

Authentication flaw

Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable...