Lucene search
K

416 matches found

OSV
OSV
added 2026/03/25 9:45 a.m.8 views

CLSA-2026-1774431936 tomcat: Fix of CVE-2025-66614

CVE-2025-66614: enforce SNI and HTTP Host header matching to prevent bypass of client certificate authentication when multiple virtual hosts are configured...

9.1CVSS6.8AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2026/03/25 8:22 a.m.9 views

CLSA-2026-1774426919 Fix CVE(s): CVE-2025-66614

SECURITY UPDATE: SNI hostname not stored for NIO2 and APR connectors - debian/patches/CVE-2025-66614.patch: store SNI hostname for NIO2 and APR connections so that SNI checks are not bypassed - CVE-2025-66614...

9.1CVSS5.8AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2026/03/23 6:16 p.m.6 views

GO-2026-4793 Traefik has a Potential mTLS Bypass via Fragmented TLS ClientHello Causing Pre-SNI Sniff Fallback to Default Non-mTLS TLS Config in github.com/traefik/traefik

Traefik has a Potential mTLS Bypass via Fragmented TLS ClientHello Causing Pre-SNI Sniff Fallback to Default Non-mTLS TLS Config in github.com/traefik/traefik...

8.3CVSS5.8AI score0.00405EPSS
Exploits0References5
OSV
OSV
added 2026/03/23 1:8 p.m.4 views

USN-8115-1 pyopenssl vulnerabilities

It was discovered that pyOpenSSL incorrectly handled exceptions in the tlsextservername callback. This could result in connections being accepted after an exception, contrary to expectations. CVE-2026-27448 It was discovered that pyOpenSSL incorrectly handled the DTLS cookie generation callback. ...

9.8CVSS6AI score0.00704EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2026/03/23 1:8 p.m.24 views

USN-8115-1: pyOpenSSL vulnerabilities

It was discovered that pyOpenSSL incorrectly handled exceptions in the tlsextservername callback. This could result in connections being accepted after an exception, contrary to expectations. CVE-2026-27448 It was discovered that pyOpenSSL incorrectly handled the DTLS cookie generation callback. ...

9.8CVSS6.1AI score0.00704EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/23 10:53 a.m.4 views

CVE-2026-32305

A flaw was found in Traefik, an HTTP reverse proxy and load balancer. A remote attacker can exploit this vulnerability by sending fragmented ClientHello packets during the Transport Layer Security TLS handshake. This causes Traefik's Server Name Indication SNI extraction to fail, leading to a...

8.3CVSS5.8AI score0.00405EPSS
Exploits0References7
OSV
OSV
added 2026/03/23 10:30 a.m.7 views

CLSA-2026-1774261838 tomcat: Fix of CVE-2025-66614

CVE-2025-66614: add protocol host name and SNI host name matching...

9.1CVSS6.8AI score0.00235EPSS
Exploits0References1
Veracode
Veracode
added 2026/03/21 5:27 a.m.6 views

TLS Connection Bypass

pyOpenSSL is vulnerable to TLS connection bypass. The vulnerability is due to an unhandled exception in a user-provided settlsextservernamecallback, where the exception is not caught and results in the connection being accepted, allowing attackers to bypass security-sensitive checks...

6.3CVSS5.9AI score0.00241EPSS
Exploits0References3Affected Software2
EUVD
EUVD
added 2026/03/20 3:43 p.m.5 views

EUVD-2026-13663

Traefik has a Potential mTLS Bypass via Fragmented TLS ClientHello Causing Pre-SNI Sniff Fallback to Default Non-mTLS TLS Config...

7.8CVSS5.8AI score0.00405EPSS
Exploits0References5
OSV
OSV
added 2026/03/20 3:43 p.m.3 views

GHSA-WVVQ-WGCR-9Q48 Traefik has a Potential mTLS Bypass via Fragmented TLS ClientHello Causing Pre-SNI Sniff Fallback to Default Non-mTLS TLS Config

Summary There is a potential vulnerability in Traefik's TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records, Traefik's SNI extraction may fail with an EOF and return an empty SNI. The TCP router then falls back to the...

7.8CVSS5.8AI score0.00405EPSS
Exploits0References6
NVD
NVD
added 2026/03/20 11:18 a.m.5 views

CVE-2026-32305

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 are vulnerable to mTLS bypass through the TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records,...

8.3CVSS0.00405EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/03/20 10:1 a.m.4 views

CVE-2026-32305

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 are vulnerable to mTLS bypass through the TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records,...

7.8CVSS5.8AI score0.00405EPSS
Exploits0References5Affected Software1
AlpineLinux
AlpineLinux
added 2026/03/20 10:1 a.m.5 views

CVE-2026-32305

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 are vulnerable to mTLS bypass through the TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records,...

7.8CVSS5.8AI score0.00405EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/20 10:1 a.m.4 views

CVE-2026-32305 Traefik mTLS bypass via fragmented ClientHello SNI extraction failure

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 are vulnerable to mTLS bypass through the TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records,...

7.8CVSS5.8AI score0.00405EPSS
Exploits0References4
OSV
OSV
added 2026/03/20 10:1 a.m.3 views

CVE-2026-32305 Traefik mTLS bypass via fragmented ClientHello SNI extraction failure

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 are vulnerable to mTLS bypass through the TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records,...

7.8CVSS5.9AI score0.00405EPSS
Exploits0References11
CVE
CVE
added 2026/03/20 10:1 a.m.33 views

CVE-2026-32305

Traefik (HTTP reverse proxy/load balancer) versions affected: 2.11.40 and earlier; 3.0.0-beta1 through 3.6.11; 3.7.0-ea.1 are vulnerable to a bypass of mTLS enforcement via TLS ClientHello SNI pre-sniffing when ClientHello messages are fragmented. In this scenario, SNI extraction may EOF and retu...

8.3CVSS5.8AI score0.00405EPSS
Exploits0References9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/20 8:21 a.m.5 views

Security Bulletin: Command Injection Vulnerability in FastMCP server_name Field Enables Arbitrary Command Execution on Windows affects watsonx.data

Summary FastMCP is the standard framework for building MCP applications. Versions prior to 2.13.0, a command-injection vulnerability lets any attacker who can influence the servername field of an MCP execute arbitrary OS commands on Windows hosts that run fastmcp install cursor. This can affect...

7.8CVSS6.1AI score0.00206EPSS
Exploits1Affected Software1
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.8 views

Traefik 安全漏洞

Traefik is an open-source reverse proxy and load balancing tool developed by Traefik. Versions of Traefik such as 2.11.40, 3.0.0-beta1 to 3.6.11, and 3.7.0-ea.1 contain security vulnerabilities. These vulnerabilities stem from issues with the TLS SNI pre-sniffing logic, which may allow for...

7.8CVSS6.4AI score0.00405EPSS
Exploits0References4
Apache Tomcat
Apache Tomcat
added 2026/03/20 12:0 a.m.10 views

Fixed in Apache Tomcat 9.0.116

Moderate: The fix forCVE-2025-66614 was incomplete CVE-2026-32990 The validation of SNI name and host name did not take account of possible differences in case allowing the strict SNI checks to be bypassed. This was fixed with commit 95f77782. This issue was reported to the Tomcat security team o...

9.1CVSS6.7AI score0.03494EPSS
Exploits2Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/03/19 8:4 a.m.3 views

pyOpenSSL allows TLS connection bypass via unhandled callback exception in set_tlsext_servername_callback

...

6.3CVSS5.8AI score0.00241EPSS
Exploits0
Rows per page
Query Builder