exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-28869

почти 2 года назад

Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of service. This vulnerability has been addressed in version 2.11.2 and 3.0.0-rc5. Users are advised to upgrade. For affected versions, this vulnerability can be mitigated by configuring the readTimeout option.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-28869

почти 2 года назад

Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of service. This vulnerability has been addressed in version 2.11.2 and 3.0.0-rc5. Users are advised to upgrade. For affected versions, this vulnerability can be mitigated by configuring the readTimeout option.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-28869

почти 2 года назад

Traefik is an HTTP reverse proxy and load balancer. In affected versio ...

CVSS3: 7.5

EPSS: Низкий

GHSA-4vwx-54mw-vqfw

почти 2 года назад

Traefik vulnerable to denial of service with Content-length header

CVSS3: 7.5

EPSS: Низкий

BDU:2024-03542

почти 2 года назад

Уязвимость обратного прокси сервера Containous Traefik, связанная с недостаточной обработкой исключительных состояний, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-28869 Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of service. This vulnerability has been addressed in version 2.11.2 and 3.0.0-rc5. Users are advised to upgrade. For affected versions, this vulnerability can be mitigated by configuring the readTimeout option.	CVSS3: 7.5	1% Низкий	почти 2 года назад
CVE-2024-28869 Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of service. This vulnerability has been addressed in version 2.11.2 and 3.0.0-rc5. Users are advised to upgrade. For affected versions, this vulnerability can be mitigated by configuring the readTimeout option.	CVSS3: 7.5	1% Низкий	почти 2 года назад
CVE-2024-28869 Traefik is an HTTP reverse proxy and load balancer. In affected versio ...	CVSS3: 7.5	1% Низкий	почти 2 года назад
GHSA-4vwx-54mw-vqfw Traefik vulnerable to denial of service with Content-length header	CVSS3: 7.5	1% Низкий	почти 2 года назад
BDU:2024-03542 Уязвимость обратного прокси сервера Containous Traefik, связанная с недостаточной обработкой исключительных состояний, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 7.5	1% Низкий	почти 2 года назад

Уязвимостей на страницу