CVE-2026-41181

EPSS 0.03%
Veröffentlicht 15.05.2026 16:27:14
Zuletzt bearbeitet 15.05.2026 17:16:46
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Traefik: Errors middleware forwards Authorization and Cookie headers to separate error page service

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.44, 3.6.15, and 3.7.0-rc.3, there is an information disclosure vulnerability in Traefik's errors (custom error pages) middleware. When the backend returns a response matching the configured status range, the middleware forwards the original request's complete header set, including Authorization, Cookie, and other authentication material, to the separate error page service rather than only the minimal context needed to render the error page. This behavior is undocumented: the documentation states only that Host is forwarded by default, so operators are not warned that sensitive credentials are shared across service boundaries. Deployments using the errors middleware with a distinct error page service may inadvertently expose end-user credentials to infrastructure that was not intended to receive them. This vulnerability is fixed in 2.11.44, 3.6.15, and 3.7.0-rc.3.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

CNA 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Herstellertraefik

≫

Produkt traefik

Version >= 3.7.0-rc.0, < 3.7.0-rc.3

Status affected

Version >= 3.0.0-beta1, < 3.6.14

Status affected

Version < 2.11.43

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.074

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	6.9	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-201 Insertion of Sensitive Information Into Sent Data

The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.

https://github.com/traefik/traefik/security/advisories/GHSA-p6hg-qh38-555r

https://github.com/traefik/traefik/releases/tag/v2.11.44

https://github.com/traefik/traefik/releases/tag/v3.6.15

https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.3

https://nvd.nist.gov/vuln/detail/CVE-2026-41181

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-41181

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-41181

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-41181