CVE-2026-29777

Medium CVSS: 6.1

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.10, A tenant with write access to an HTTPRoute resource can inject backtick-delimited rule tokens into Traefik's router rule language via unsanitized header or query parameter match values. In shared gateway deployments, this can bypass listener hostname constraints and redirect traffic for victim hostnames to attacker-controlled backends. This vulnerability is fixed in 3.6.10.

Vendor

Traefik

Product

Traefik

CWE

CWE-74

Yayın Tarihi

2026-03-11 16:16:40

Güncelleme

2026-03-19 20:26:04

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-74 Traefik MEDIUM Traefik 2026

Referanslar

https://github.com/traefik/traefik/releases/tag/v3.6.10 https://github.com/traefik/traefik/security/advisories/GHSA-8q2w-wr49-whqj

Benzer Kayıtlar

Medium

CVE-2026-33433

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.42, 3.6.11, and 3.7.0-ea.3, when `headerField…

Medium

CVE-2026-32695

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 3.6.11 and 3.7.0-ea.2, Traefik's Knative provider…

High

CVE-2026-32305

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea…

Medium

CVE-2026-32595

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea…

High

CVE-2026-29054

Traefik is an HTTP reverse proxy and load balancer. From version 2.11.9 to 2.11.37 and from version 3.1.3 to 3.6.8, ther…

Medium

CVE-2026-26998

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.38 and 3.6.9, there is a potential vulnerabil…