Traefik

Traefik

41 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2026-44774

  • EPSS 0.01%
  • Veröffentlicht 15.05.2026 16:30:43
  • Zuletzt bearbeitet 15.05.2026 17:16:48

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.46, 3.6.17, and 3.7.1, Traefik's Kubernetes Gateway API provider allows a tenant with HTTPRoute creation permissions to expose the REST provider handler, bypassing the providers.rest.i...

6.9

CVE-2026-41181

  • EPSS 0.03%
  • Veröffentlicht 15.05.2026 16:27:14
  • Zuletzt bearbeitet 15.05.2026 17:16:46

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.44, 3.6.15, and 3.7.0-rc.3, there is an information disclosure vulnerability in Traefik's errors (custom error pages) middleware. When the backend returns a response matching the confi...

3.7

CVE-2026-41263

  • EPSS 0.02%
  • Veröffentlicht 30.04.2026 20:39:49
  • Zuletzt bearbeitet 01.05.2026 17:37:12

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a timing side-channel vulnerability in Traefik's BasicAuth middleware that allows an attacker to enumerate valid usernames through respons...

8.2

CVE-2026-40912

Exploit
  • EPSS 0.07%
  • Veröffentlicht 30.04.2026 20:38:21
  • Zuletzt bearbeitet 01.05.2026 17:42:32

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's StripPrefixRegex middleware when used in combination with ForwardAuth, Ba...

10

CVE-2026-39858

Exploit
  • EPSS 0.06%
  • Veröffentlicht 30.04.2026 20:26:26
  • Zuletzt bearbeitet 01.05.2026 17:44:36

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's ForwardAuth and snippet-based authentication middleware. Traefik's forwar...

10

CVE-2026-35051

Exploit
  • EPSS 0.02%
  • Veröffentlicht 30.04.2026 20:26:06
  • Zuletzt bearbeitet 01.05.2026 17:45:41

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is an authentication bypass vulnerability in Traefik's ForwardAuth middleware when trustForwardHeader=false is configured and Traefik is depl...

6.4

CVE-2026-41174

Exploit
  • EPSS 0.01%
  • Veröffentlicht 30.04.2026 20:20:29
  • Zuletzt bearbeitet 01.05.2026 17:39:35

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolation enforcement. When providers.kubernetesCRD.allowCr...

8.8

CVE-2026-33433

Exploit
  • EPSS 0.02%
  • Veröffentlicht 27.03.2026 13:49:08
  • Zuletzt bearbeitet 03.04.2026 17:09:06

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.42, 3.6.11, and 3.7.0-ea.3, when `headerField` is configured with a non-canonical HTTP header name (e.g., `x-auth-user` instead of `X-Auth-User`), an authenticated attacker ca...

7.7

CVE-2026-32695

Exploit
  • EPSS 0.02%
  • Veröffentlicht 27.03.2026 13:47:03
  • Zuletzt bearbeitet 03.04.2026 17:22:01

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 3.6.11 and 3.7.0-ea.2, Traefik's Knative provider builds router rules by interpolating user-controlled values into backtick-delimited rule expressions without escaping. In live clu...

3.7

CVE-2026-32595

  • EPSS 0.02%
  • Veröffentlicht 20.03.2026 10:08:41
  • Zuletzt bearbeitet 24.03.2026 15:14:24

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 comtain BasicAuth middleware that allows username enumeration via a timing attack. When a submitted username exists, the middle...