Lucene search
K

14 matches found

Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.5 views

PT-2026-29932

Traefik has Knative Ingress Rule Injection that Allows Host Restriction Bypass in github.com/traefik/traefik...

6.3CVSS5.9AI score0.00463EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2026/03/28 12:26 a.m.4 views

SUSE CVE-2026-32695

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 3.6.11 and 3.7.0-ea.2, Traefik's Knative provider builds router rules by interpolating user-controlled values into backtick-delimited rule expressions without escaping. In live cluster validation, Knative rules.hosts was...

7.7CVSS5.9AI score0.00463EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/03/27 10:33 p.m.8 views

CVE-2026-32695

A flaw was found in Traefik, an HTTP reverse proxy and load balancer. When using the Knative provider, Traefik incorrectly interpolates user-controlled values into router rule expressions without proper escaping. This vulnerability allows an attacker to inject malicious rule syntax, leading to a...

7.7CVSS5.8AI score0.00463EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/27 5:49 p.m.6 views

EUVD-2026-16606

Traefik has Knative Ingress Rule Injection that Allows Host Restriction Bypass...

6.3CVSS5.9AI score0.00463EPSS
Exploits1References5
OSV
OSV
added 2026/03/27 5:49 p.m.5 views

GHSA-67JX-R9PV-98RJ Traefik has Knative Ingress Rule Injection that Allows Host Restriction Bypass

Summary There is a potential vulnerability in Traefik's Kubernetes Knative, Ingress, and Ingress-NGINX providers related to rule injection. User-controlled values are interpolated into backtick-delimited Traefik router rule expressions without escaping or validation. A malicious value containing ...

6.1CVSS5.9AI score0.00463EPSS
Exploits1References6
NVD
NVD
added 2026/03/27 2:16 p.m.4 views

CVE-2026-32695

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 3.6.11 and 3.7.0-ea.2, Traefik's Knative provider builds router rules by interpolating user-controlled values into backtick-delimited rule expressions without escaping. In live cluster validation, Knative rules.hosts was...

7.7CVSS0.00463EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.6 views

PT-2026-28442

Name of the Vulnerable Software and Affected Versions Traefik versions prior to 3.6.11 and 3.7.0-ea.2 Description Traefik’s Knative provider constructs router rules by incorporating user-provided values into rule expressions without proper sanitization. Specifically, the rules.hosts field in...

7.7CVSS5.9AI score0.00494EPSS
Exploits1References50
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-28628

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lambdaisland/uri is a pure Clojure/ClojureScript URI library. In versions prior to 1.14.120 authority- regex allows an attacker to send malicious URLs to be...

6.1CVSS6.3AI score0.00553EPSS
Exploits1References3
OSV
OSV
added 2025/06/30 2:47 p.m.5 views

USN-7604-1 sudo vulnerabilities

Rich Mirch discovered that Sudo incorrectly handled the host option. In environments where per-host rules are configured in the sudoers file, a local attacker could use this issue to bypass the host restrictions. CVE-2025-32462 Rich Mirch discovered that Sudo incorrectly handled the chroot option...

9.3CVSS6.9AI score0.47467EPSS
Exploits77References3
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.4 views

PT-2024-40188 · Silverstripe · Silverstripe

Name of the Vulnerable Software and Affected Versions: SilverStripe affected versions not specified Description: The issue allows spoofing of HTTP headers, which can lead to various security problems, including bypassing IP restrictions and SSL enforcement. This is due to SilverStripe trusting...

6.5CVSS7.2AI score
Exploits0References7
NVD
NVD
added 2023/03/27 9:15 p.m.52 views

CVE-2023-28628

lambdaisland/uri is a pure Clojure/ClojureScript URI library. In versions prior to 1.14.120 authority-regex allows an attacker to send malicious URLs to be parsed by the lambdaisland/uri and return the wrong authority. This issue is similar to but distinct from CVE-2020-8910. The regex in questio...

6.1CVSS5.9AI score0.00553EPSS
Exploits1References2
OSV
OSV
added 2023/03/27 9:15 p.m.11 views

UBUNTU-CVE-2023-28628

lambdaisland/uri is a pure Clojure/ClojureScript URI library. In versions prior to 1.14.120 authority-regex allows an attacker to send malicious URLs to be parsed by the lambdaisland/uri and return the wrong authority. This issue is similar to but distinct from CVE-2020-8910. The regex in questio...

6.1CVSS6.3AI score0.00553EPSS
Exploits1References5
Prion
Prion
added 2023/03/27 9:15 p.m.18 views

Design/Logic Flaw

lambdaisland/uri is a pure Clojure/ClojureScript URI library. In versions prior to 1.14.120 authority-regex allows an attacker to send malicious URLs to be parsed by the lambdaisland/uri and return the wrong authority. This issue is similar to but distinct from CVE-2020-8910. The regex in questio...

5.8CVSS6AI score0.00553EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2014/05/08 3:32 p.m.2 views

USN-2210-1 cups-filters vulnerability

Sebastian Krahmer discovered that cups-browsed incorrectly filtered remote printer names and strings. A remote attacker could use this issue to possibly execute arbitrary commands. CVE-2014-2707 Johannes Meixner discovered that cups-browsed ignored invalid BrowseAllow directives. This could cause...

8.3CVSS7.3AI score0.03007EPSS
Exploits1References2
Rows per page
Query Builder