CNNVD-202601-2690 Information
CNNVD ID
CNNVD-202601-2690
Related CVE
- CNNVD Published: 2026-01-15
Description (Chinese)
Traefik是Traefik开源的一款开源的反向代理与负载均衡工具。 Traefik 2.11.35之前版本和3.6.7之前版本存在安全漏洞,该漏洞源于ACME TLS证书自动生成存在潜在漏洞,可能导致拒绝服务攻击。
Description (English)
Traefik is an open source counter-agent and load balancing tool for Traefik open source. There was a security loophole in previous Traefik 2.11.35, and before 3.6.7, which originated from a potential loophole in the automatic creation of ACME TLS certificates, which could lead to a denial of service attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Traefik
Published
2026-01-15
Last Modified
2026-02-24
References
https://github.com/traefik/traefik/commit/e9f3089e9045812bcf1b410a9d40568917b26c3d https://github.com/traefik/traefik/releases/tag/v2.11.35 https://github.com/traefik/traefik/releases/tag/v3.6.7 https://github.com/traefik/traefik/security/advisories/GHSA-cwjm-3f7h-9hwq
Patch
https://github.com/traefik/traefik/releases
Share on: