Security: traefik/traefik
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
HTTP/2 frames can cause a running server to panicGHSA-4hjq-9h5c-252j published
Mar 11, 2026 by nmenginHigh -
Kubernetes gateway rule injection via unescaped backticks in HTTPRoute match valuesGHSA-8q2w-wr49-whqj published
Mar 11, 2026 by nmenginModerate -
ForwardAuth Middleware Allows Unbounded Response Body, Causing Potential Denial of ServiceGHSA-fw45-f5q2-2p4x published
Mar 4, 2026 by emilevaugeModerate -
TLS Handshake Error Handling Allows Stalled Connections on TCP RoutersGHSA-xw98-5q62-jx94 published
Mar 4, 2026 by emilevaugeHigh -
Case-Sensitive Bypass in Connection Header Allows Removal of X-Forwarded HeadersGHSA-92mv-8f8w-wq52 published
Mar 4, 2026 by emilevaugeHigh -
TCP readTimeout bypass via STARTTLS on PostgresGHSA-89p3-4642-cr2w published
Feb 12, 2026 by nmenginHigh -
TLS ClientAuth Bypass on HTTP/3GHSA-gv8r-9rw9-9697 published
Feb 20, 2026 by nmenginHigh -
ACME TLS-ALPN fast path lacks timeouts and close on handshake stallGHSA-cwjm-3f7h-9hwq published
Jan 15, 2026 by nmenginModerate -
Inverted TLS Verification Logic in Kubernetes NGINX ProviderGHSA-7vww-mvcr-x6vj published
Dec 8, 2025 by nmenginModerate -
Path Normalization Bypass in Traefik Router + Middleware RulesGHSA-gm3x-23wp-hc2c published
Dec 8, 2025 by nmenginHigh