3 matches found
GO-2022-1152 Traefik routes exposed with an empty TLSOption in github.com/traefik/traefik
Traefik routes exposed with an empty TLSOption in github.com/traefik/traefik...
Improper Certificate Validation
github.com/traefik/traefik is vulnerable to improper certificate validation. A route secured using the mTLS connection is exposed to remote attackers due to improper client certificate verification when the TLSOption is empty...
traefik -- multiple vulnerabilities
The Traefik project reports: This update is recommended for all traefik users and provides following important security fixes: CVE-2022-23469: Authorization header displayed in the debug logs CVE-2022-46153: Routes exposed with an empty TLSOption in traefik...