Описание
Improper Authentication
Traefik 2.x, in certain configurations, allows HTTPS sessions to proceed without mutual TLS verification in a situation where ERR_BAD_SSL_CLIENT_AUTH_CERT should have occurred.
Пакеты
Наименование
github.com/traefik/traefik/v2
go
Затронутые версииВерсия исправления
< 2.2.2
2.2.2
Связанные уязвимости
CVSS3: 7.5
nvd
больше 5 лет назад
Traefik 2.x, in certain configurations, allows HTTPS sessions to proceed without mutual TLS verification in a situation where ERR_BAD_SSL_CLIENT_AUTH_CERT should have occurred.
CVSS3: 7.5
debian
больше 5 лет назад
Traefik 2.x, in certain configurations, allows HTTPS sessions to proce ...