Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Traefik vulnerable to bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes
Vulnerability Description
Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Versions 2.11.6, 3.0.4, and 3.1.0-rc3 contain a patch for this issue. No known workarounds are available.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
Containous Traefik 安全漏洞
Vulnerability Description
Containous Traefik是一款开源的反向代理与负载均衡工具。 Containous Traefik 2.11.6、3.0.4、3.1.0-rc3 之前版本存在安全漏洞,该漏洞源于允许通过伪造IP地址发送的QUIC 0-RTT握手中的HTTP/3早期数据请求绕过IP允许列表。
CVSS Information
N/A
Vulnerability Type
N/A