all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Traefik vulnerable to bypassing IP allow-lists via HTTP/3 early data requests...

Add to bookmarks
July 5, 2024, 5:32 p.m. |

CVE | THREATINT - NEW cve.threatint.com

Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0...

balancer bypassing data http lists load balancer proxy quic requests reverse reverse proxy traefik vulnerability vulnerable

Visit resource

More from cve.threatint.com / CVE | THREATINT - NEW

OpenVPN 2.6.10 and earlier in a server role accepts multiple exit notificatio... an hour ago | cve.threatint.com
clients exit notifications openvpn +3
Undertow: learningpushhandler can lead to remote memory dos attacksA vulnerab... an hour ago | cve.threatint.com
can config default disabled +6
Undertow: response write hangs in case of java 17 tlsv1.3 newsessionticketA v... an hour ago | cve.threatint.com
body case client continue +5
Undici vulnerable to data leak when using response.arrayBuffer()Undici is an ... 2 hours ago | cve.threatint.com
client conditions data data leak +13
Botan has a Denial of Service Due to Excessive Name ConstraintsBotan is a C++... 2 hours ago | cve.threatint.com
can certificates check cryptography +10
/n software IPWorks SSH insufficient file access verificationThe /n software ... 3 hours ago | cve.threatint.com
access can certificate file +10
Denial of Service in aimhubio/aimA vulnerability in aimhubio/aim version 3.19... 3 hours ago | cve.threatint.com
aim attacker con configuring +8
Openssh: possible remote code execution due to a race condition in signal han... 4 hours ago | cve.threatint.com
authenticate client code code execution +12
URL Redirection to Arbitrary Site Exists in SitefinityThe user may be redirec... 5 hours ago | cve.threatint.com
may redirection url

Jobs in InfoSec / Cybersecurity

Find Talent

Sr. IT Internal Auditor

@ CCC Intelligent Solutions | Chicago (Green St), IL
View on infosec-jobs.com

Sr. Principal Product Manager

@ Forcepoint | USA - Remote
View on infosec-jobs.com

Principal Software Engineer

@ Rapid7 | NIS Belfast
View on infosec-jobs.com

Consultant as Network & Security Administrator ( Cloud Oriented )

@ Teamwork Corporate | Moka, Mauritius
View on infosec-jobs.com

Access Engineer

@ Booz Allen Hamilton | USA, VA, Arlington (1550 Crystal Dr Suite 1000) client
View on infosec-jobs.com

Associate, Technology Audit

@ BlackRock | AT8 - 725 Ponce de Leon Ave NE, Atlanta
View on infosec-jobs.com