Lucene search
+L

1041 matches found

cve
cve
added 2026/07/06 8:20 p.m.25 views

CVE-2026-54764

Summary of CVE-2026-54764 : Traefik’s ForwardAuth middleware can leak spoofed port information due to incorrect header handling when trustForwardHeader is false. Before fixes, the middleware derived X-Forwarded-Port from the original incoming request rather than the sanitized forwarded request, a...

6.9CVSS6AI score0.0029EPSS
Exploits0References3Affected Software1
alpinelinux
alpinelinux
added 2026/07/06 8:20 p.m.7 views

CVE-2026-54764

Traefik is an HTTP reverse proxy and load balancer. Prior to v2.11.51, v3.6.22, and v3.7.6, Traefik's ForwardAuth middleware, even when configured with trustForwardHeader: false, derives the X-Forwarded-Port header sent to the authentication service from the original incoming request instead of t...

6.9CVSS6AI score0.0029EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/07/06 12:0 a.m.22 views

PT-2026-56012

Name of the Vulnerable Software and Affected Versions Traefik versions 3.7.0 through 3.7.5 Description Traefik's Kubernetes Gateway API provider may incorrectly resolve two accepted HTTPRoutes that target the same backend Service:port but use different backendRef filters for the same child servic...

8.5CVSS5.9AI score0.00346EPSS
Exploits0References17
ptsecurity
ptsecurity
added 2026/07/06 12:0 a.m.12 views

PT-2026-55998

Name of the Vulnerable Software and Affected Versions Traefik versions prior to 2.11.51 Traefik versions prior to 3.6.22 Traefik versions prior to 3.7.6 Description The ForwardAuth middleware in this HTTP reverse proxy and load balancer incorrectly derives the X-Forwarded-Port header sent to the...

6.9CVSS6AI score0.0029EPSS
Exploits0References16
nessus
nessus
added 2026/07/06 12:0 a.m.6 views

FreeBSD : traefik -- Multiple vulnerabilities (803b9816-77af-11f1-ba71-5404a68ad561)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 803b9816-77af-11f1-ba71-5404a68ad561 advisory. The traefik project releases a new version addressing multiple CVEs: Tenable has extracted the...

10CVSS6AI score0.00346EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/07/06 12:0 a.m.10 views

PT-2026-56011

Name of the Vulnerable Software and Affected Versions Traefik versions prior to 2.11.51 Traefik versions prior to 3.6.22 Traefik versions prior to 3.7.6 Description Traefik's BasicAuth, DigestAuth, and ForwardAuth middlewares fail to account for underscore-variant header names when stripping...

10CVSS5.9AI score0.00256EPSS
Exploits0References13
cgr
cgr
added 2026/07/02 2:17 p.m.13 views

GHSA-3G6V-2R68-PRFC vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

6.1AI score
Exploits0
cgr
cgr
added 2026/07/02 2:17 p.m.13 views

CVE-2026-54761 vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

7.1CVSS6.1AI score0.00318EPSS
Exploits2
cgr
cgr
added 2026/07/01 2:17 a.m.12 views

CVE-2026-53622 vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

10CVSS6.1AI score0.0024EPSS
Exploits1
cgr
cgr
added 2026/07/01 2:17 a.m.13 views

GHSA-9CR8-Q42Q-G8M7 vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

6.1AI score
Exploits0
freebsd
freebsd
added 2026/06/30 12:0 a.m.6 views

traefik -- Multiple vulnerabilities

The traefik project releases a new version addressing multiple CVEs: CVE-2026-54763 underscore-variant identity spoofing CVE-2026-54764 ForwardAuth middleware leaks X-Forwarded-Port spoofing CVE-2026-54765 Gateway HTTPRoute backendRef filters can leak backend context...

10CVSS5.9AI score0.00346EPSS
Exploits0References1
cgr
cgr
added 2026/06/27 2:17 p.m.9 views

GHSA-4MR2-FG2P-W63C vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

6.1AI score
Exploits0
cgr
cgr
added 2026/06/27 2:17 p.m.7 views

CVE-2026-54762 vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

8.6CVSS6.1AI score0.0036EPSS
Exploits1
cgr
cgr
added 2026/06/26 8:22 p.m.7 views

GHSA-5CGQ-3RG8-M6CV vulnerabilities

Vulnerabilities for packages: backup-restore-operator, mattermost-fips, kyverno-fips, traefik, harbor-fips, knative-kafka-broker, argo-events-fips, prometheus, argo-cd-fips, terragrunt, telegraf, argo-cd, containerd, argo-events, keda-fips, istio, kubernetes, apply-cve-bump, traefik-fips,...

6.1AI score
Exploits0
cgr
cgr
added 2026/06/26 8:22 p.m.4 views

GHSA-X527-X647-Q7GG vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, external-dns, argocd-image-updater-fips, backup-restore-operator, coder, cilium, aactl, opentelemetry-collector, argo-cd-fips, prometheus-fips, flux-source-controller, cloudbeat-fips, nerdctl, osv-scanner,...

6.1AI score
Exploits0
cgr
cgr
added 2026/06/26 8:22 p.m.6 views

GHSA-JPPX-RXG9-JMRX vulnerabilities

Vulnerabilities for packages: external-dns, backup-restore-operator, cilium, aactl, opentelemetry-collector, argo-cd-fips, prometheus-fips, nerdctl, kots, tekton-pipelines-fips, spire-server, frankenphp-8.5, frankenphp-8.4, zot, knative-kafka-broker-fips, podman-fips, kyverno-fips, terraform,...

6.1AI score
Exploits0
cgr
cgr
added 2026/06/26 8:22 p.m.5 views

GHSA-9M57-25V3-79X9 vulnerabilities

Vulnerabilities for packages: external-dns, backup-restore-operator, cilium, aactl, opentelemetry-collector, argo-cd-fips, prometheus-fips, nerdctl, kots, tekton-pipelines-fips, spire-server, frankenphp-8.5, frankenphp-8.4, zot, knative-kafka-broker-fips, podman-fips, kyverno-fips, terraform,...

6.1AI score
Exploits0
cgr
cgr
added 2026/06/26 8:22 p.m.8 views

GHSA-45GG-VH54-H5M9 vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, external-dns, argocd-image-updater-fips, backup-restore-operator, coder, cilium, aactl, opentelemetry-collector, argo-cd-fips, prometheus-fips, flux-source-controller, cloudbeat-fips, nerdctl, osv-scanner,...

6.1AI score
Exploits0
osv
osv
added 2026/06/25 10:34 p.m.5 views

GO-2026-5752 Traefik has a StripPrefix Route-Level Auth Bypass via Path Normalization in github.com/traefik/traefik

Traefik has a StripPrefix Route-Level Auth Bypass via Path Normalization in github.com/traefik/traefik...

10CVSS5.8AI score0.00591EPSS
Exploits2References4
redhatcve
redhatcve
added 2026/06/25 6:49 p.m.7 views

CVE-2026-48020

A flaw was found in Traefik, an HTTP reverse proxy and load balancer. This vulnerability exists in the StripPrefix middleware, allowing an unauthenticated attacker to bypass route-level authentication and authorization. By crafting a request path containing '..' or its percent-encoded form, an...

10CVSS5.7AI score0.00591EPSS
Exploits2References7
Rows per page
Query Builder