Hello, Our scanner found some CVEs in Traefik v2.10.7 so I was wondering if anyone would be able to tell me which are false positives or not. I realize that Traefik v2.10.7 is unsupported now so I'm not expecting anything to get updated or fixed, but it would be nice to know which of these can be d…

Hello, we (traefik maintainers) maintain only v3.0 and v2.11. CVE-2023-42282 node-ip (js): Traefik doesn't use it, no impact. CVE-2024-23653 BuildKit: Traefik doesn't use it, no impact. CVE-2024-23652 BuildKit: Traefik doesn't use it, no impact. CVE-2024-29180 webpack-dev-middleware (js)…

Potential CVEs in v2.10.7

Traefik Traefik v2

bluepuma77 May 15, 2024, 4:51am 2

Why don’t you upgrade to v2.11?

Did you search the forum ("CVE") and read related posts like this one?

Topic		Replies	Views
Vulnerability for v2.10.7 Traefik v2 docker	8	287	May 3, 2024
Is Traefik vulnerable to CVE-2023-44487? Traefik v2 kubernetes-crd , kubernetes-ingress	11	7888	October 19, 2023
CVE vulnerabilities for traefik:v2.9.5 - CVE-2021-41803, CVE-2022-40716, CVE-2022-32149 Traefik v2 kubernetes-ingress , middleware	2	860	December 9, 2022
New Security Updates for Traefik 2.10 and 3.0.0-beta Traefik v2	2	1260	October 19, 2023
CVE vulnerability CVE-2021-41103 and CVE-2021-43816 Traefik v2 middleware	3	469	February 9, 2022

Potential CVEs in v2.10.7

Related topics