| Title |
Severity |
Exploit |
Date |
Affected Version |
|
CVE-2025-47952
|
Low
|
|
May 28, 2025
|
< 3.4.1
|
|
CVE-2025-32431
|
High
|
|
Apr 21, 2025
|
< 3.3.6
== 3.4.0-rc1
>= 3.4.0-rc1 < 3.4.0-rc2
|
|
Traefik affected by Go HTTP Request Smuggling Vulnerability
|
Critical
|
|
Apr 18, 2025
|
< 3.3.6
== 3.4.0-rc1
>= 3.4.0-rc1 < 3.4.0-rc2
|
|
CVE-2025-22868
|
High
|
|
Apr 18, 2025
|
< 3.3.6
== 3.4.0-rc1
>= 3.4.0-rc1 < 3.4.0-rc2
|
|
CVE-2024-39321
|
High
|
|
Jul 5, 2024
|
>= 3.0.0-beta3 < 3.0.4
>= 3.1.0-rc1 < 3.1.0-rc3
|
|
ACME DNS: Azure Identity Libraries Elevation of Privilege Vulnerability
|
Medium
|
|
Jun 20, 2024
|
< 3.0.3
|
|
Traefik has unexpected behavior with IPv4-mapped IPv6 addresses
|
Medium
|
|
Jun 11, 2024
|
>= 3.0.0-beta3 < 3.0.2
|
|
Traefik vulnerable to GO issue allowing malformed DNS message to cause infinite loop
|
Medium
|
|
May 23, 2024
|
< 3.0.1
|
|
Traefik affected by HTTP/2 CONTINUATION flood in net/http
|
Medium
|
|
Apr 15, 2024
|
>= 3.0.0-rc1 < 3.0.0-rc5
|
|
CVE-2024-28869
|
High
|
|
Apr 13, 2024
|
>= 3.0.0-beta3 < 3.0.0-rc5
|
github.com/traefik/traefik/v3