Traefik Enterprise
1 CVEs
product
Monthly
configurationwatcher.go in Traefik 2.x before 2.1.4 and TraefikEE 2.0.0 mishandles the purging of certificate contents from providers before logging. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Traefik
Traefik Enterprise
NVD
GitHub
CVSS 3.1
7.5
EPSS
0.7%
EPSS 1%
CVSS 7.5
HIGH
PATCH
This Week
configurationwatcher.go in Traefik 2.x before 2.1.4 and TraefikEE 2.0.0 mishandles the purging of certificate contents from providers before logging. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Traefik
Traefik Enterprise
NVD
GitHub