I use Traefik 2.x as the Ingress Controller for my production K8s cluster. Therefore, I'd like to know if it's vulnerable to CVE-2023-44487 or not. Thanks for your reply :slight_smile:

Hello @trinhpham , @blanebramble , Thanks for reaching out. We are currently working on a fix for Traefik v2.10, we'll keep you updated about it once the new version is available. As Traefik v1 is not maintained anymore, we haven't planned to bring the fix to Traefik v1.7. You can find the list of…

Is Traefik vulnerable to CVE-2023-44487?

Traefik Traefik v2

nicomengin October 13, 2023, 8:19am 9

Hello @jokke,

Thanks for reaching out, we have updated both changelogs to add this information.
Moreover, we have published a topic summarizing the actions done to fix the CVEs.

Topic		Replies	Views
Error from browser to many redirect but from dashboard everything is success Traefik v2 kubernetes-crd , kubernetes-ingress	1	432	January 27, 2023
[Bounty Offer] Need to get Traefik V2 working on DigitalOcean k8s Traefik v2 docker , kubernetes-crd	4	568	November 6, 2019
Traefik v1.7.x to Traefik v2.x.x ingress controller migration Traefik v2 kubernetes-ingress	2	633	February 24, 2020
Huge number of redirects are being logged and I can't figure out why Traefik v1 kubernetes-ingress	1	425	October 22, 2019
New deployment on Kubernetes just results in 503's Traefik v2 kubernetes-ingress	0	457	February 3, 2020

Is Traefik vulnerable to CVE-2023-44487?

Related Topics