Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-39321

Опубликовано: 04 июл. 2024
Источник: redhat
CVSS3: 7.5
EPSS Низкий

Описание

Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Versions 2.11.6, 3.0.4, and 3.1.0-rc3 contain a patch for this issue. No known workarounds are available.

An authorization bypass vulnerability was found in Traefik. This flaw allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses.

Отчет

The vulnerability in Traefik that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes, while notable, is categorized as moderate severity rather than important. This classification stems from the requirement for an attacker to leverage HTTP/3's early data feature and perform spoofed IP address manipulation to exploit the flaw. As a result, successful exploitation demands specific conditions, including network-level access and manipulation capabilities, which may not be trivial in many environments.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenShift Dev Spacesdevspaces/devspaces-rhel8-operatorAffected
Red Hat OpenShift Dev Spacesdevspaces/traefik-rhel8Affected
Red Hat OpenShift GitOpsopenshift-gitops-1/argo-rollouts-rhel8Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-639
https://bugzilla.redhat.com/show_bug.cgi?id=2296009traefik: Bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes

EPSS

Процентиль: 39%
0.00177
Низкий

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-39321

CVSS3: 7.5
nvd
больше 1 года назад

Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Versions 2.11.6, 3.0.4, and 3.1.0-rc3 contain a patch for this issue. No known workarounds are available.

debian логотип

CVE-2024-39321

CVSS3: 7.5
debian
больше 1 года назад

Traefik is an HTTP reverse proxy and load balancer. Versions prior to ...

github логотип

GHSA-gxrv-wf35-62w9

CVSS3: 7.5
github
больше 1 года назад

Bypassing IP allow-lists in traefik via HTTP/3 early data requests in QUIC 0-RTT handshakes

EPSS

Процентиль: 39%
0.00177
Низкий

7.5 High

CVSS3