CVE-2018-15598
N/A
N/A
Summary
Containous Traefik 1.6.x before 1.6.6, when –api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/containous/traefik/pull/3790
- https://github.com/containous/traefik/pull/3790/commits/368bd170913078732bde58160f92f202f370278b
- https://github.com/containous/traefik/releases/tag/v1.6.6
- https://github.com/containous/traefik/pull/3790/commits/113250ce5735d554c502ca16fb03bb9119ca79f1
References
- https://github.com/containous/traefik/pull/3790
- https://github.com/containous/traefik/pull/3790/commits/368bd170913078732bde58160f92f202f370278b
- https://github.com/containous/traefik/releases/tag/v1.6.6
- https://github.com/containous/traefik/pull/3790/commits/113250ce5735d554c502ca16fb03bb9119ca79f1
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.