[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-29013":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":86,"aliases":87,"duplicate_of":9,"upstream":89,"downstream":90,"duplicates":95,"related":96,"reserved_at":9,"published_at":99,"modified_at":100,"state":101,"summary":102,"references_raw":111,"kevs":163,"epss":164,"epss_history":167,"metrics":423,"affected":433},"CVE-2023-29013","Traefik (pronounced traffic) is a modern HTTP reverse proxy and load balancer for deploying microservices. There is a vulnerability in Go when parsing the HTTP headers, which impacts Traefik. HTTP header parsing could allocate substantially more memory than required to hold the parsed headers. This behavior could be exploited to cause a denial of service. This issue has been patched in versions 2.9.10 and 2.10.0-rc2.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-400","Uncontrolled Resource Consumption","The product does not properly control the allocation and maintenance of a limited resource.","weakness","Draft","Class","High",[20,24,82],{"id":21,"name":22,"techniques":23},"CAPEC-147","XML Ping of the Death",[],{"id":25,"name":26,"techniques":27},"CAPEC-227","Sustained Client Engagement",[28],{"id":29,"name":30,"tactics":31,"countermeasures":35},"T1499","Endpoint Denial of Service",[32],{"id":33,"name":34},"TA0105","Impact",[36,41,45,49,53,57,61,65,69,73,78],{"id":37,"name":38,"tactic":39},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":40},"Detect",{"id":42,"name":43,"tactic":44},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":40},{"id":46,"name":47,"tactic":48},"D3-CSPP","Client-server Payload Profiling",{"name":40},{"id":50,"name":51,"tactic":52},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":40},{"id":54,"name":55,"tactic":56},"D3-NTSA","Network Traffic Signature Analysis",{"name":40},{"id":58,"name":59,"tactic":60},"D3-APCA","Application Protocol Command Analysis",{"name":40},{"id":62,"name":63,"tactic":64},"D3-NTCD","Network Traffic Community Deviation",{"name":40},{"id":66,"name":67,"tactic":68},"D3-RTSD","Remote Terminal Session Detection",{"name":40},{"id":70,"name":71,"tactic":72},"D3-ISVA","Inbound Session Volume Analysis",{"name":40},{"id":74,"name":75,"tactic":76},"D3-NTF","Network Traffic Filtering",{"name":77},"Isolate",{"id":79,"name":80,"tactic":81},"D3-ITF","Inbound Traffic Filtering",{"name":77},{"id":83,"name":84,"techniques":85},"CAPEC-492","Regular Expression Exponential Blowup",[],[],[88],"GHSA-7hj9-rv74-5g92",[],[91,93],{"_key":92},"OPENSUSE-SU-2024:13007-1",{"_key":94},"OPENSUSE-SU-2024:14076-1",[],[97,98],{"_key":92},{"_key":94},"2023-04-14T18:15:12.622Z","2025-02-13T16:48:58.656Z","Modified",{"cisa_kev":103,"cisa_ransomware":103,"cisa_vendor":9,"epss_severity":104,"epss_score":105,"severity":106,"severity_score":107,"severity_version":108,"severity_source":109,"severity_vector":110,"severity_status":101},false,"low",0.03393,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[112,121,127,132,136,141,146,150,155,159],{"url":113,"sources":114,"tags":117},"https://github.com/traefik/traefik/security/advisories/GHSA-7hj9-rv74-5g92",[109,115,116],"nvd","osv_go",[118,119,120],"X Refsource CONFIRM","Vendor Advisory","WEB",{"url":122,"sources":123,"tags":124},"https://github.com/traefik/traefik/commit/4ed3964b3586565519249bbdc55eb1b961c08c49",[109,115,116],[125,126,120],"X Refsource MISC","Patch",{"url":128,"sources":129,"tags":130},"https://github.com/traefik/traefik/releases/tag/v2.10.0-rc2",[109,115,116],[125,131,120],"Release Notes",{"url":133,"sources":134,"tags":135},"https://github.com/traefik/traefik/releases/tag/v2.9.10",[109,115,116],[125,131,120],{"url":137,"sources":138,"tags":139},"https://security.netapp.com/advisory/ntap-20230517-0008/",[109,115],[140],"Third Party Advisory",{"url":142,"sources":143,"tags":144},"https://nvd.nist.gov/vuln/detail/CVE-2023-29013",[116],[145],"Advisory",{"url":147,"sources":148,"tags":149},"https://github.com/advisories/GHSA-8v5j-pwr7-w5f8",[116],[145],{"url":151,"sources":152,"tags":153},"https://github.com/traefik/traefik",[116],[154],"PACKAGE",{"url":156,"sources":157,"tags":158},"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8/m/OV40vnafAwAJ",[116],[120],{"url":160,"sources":161,"tags":162},"https://security.netapp.com/advisory/ntap-20230517-0008",[116],[120],[],{"date":165,"score":105,"percentile":166},"2026-06-04",0.87625,[168,172,175,177,180,183,186,189,192,195,198,201,204,207,210,214,217,220,223,226,229,232,234,236,238,241,244,247,250,253,255,258,261,264,267,270,272,275,278,281,284,287,290,293,295,298,300,303,305,308,311,314,317,320,323,326,328,331,334,337,340,342,345,347,349,353,356,358,361,363,366,369,372,374,377,380,383,385,388,391,394,397,400,403,406,409,412,415,418,420],{"date":169,"score":170,"percentile":171},"2025-11-04",0.03255,0.86627,{"date":173,"score":170,"percentile":174},"2025-11-05",0.86632,{"date":176,"score":170,"percentile":171},"2025-11-06",{"date":178,"score":170,"percentile":179},"2025-11-07",0.86636,{"date":181,"score":170,"percentile":182},"2025-11-08",0.8664,{"date":184,"score":170,"percentile":185},"2025-11-09",0.86634,{"date":187,"score":170,"percentile":188},"2025-11-10",0.86633,{"date":190,"score":170,"percentile":191},"2025-11-11",0.86639,{"date":193,"score":170,"percentile":194},"2025-11-12",0.86645,{"date":196,"score":170,"percentile":197},"2025-11-13",0.86651,{"date":199,"score":170,"percentile":200},"2025-11-14",0.86652,{"date":202,"score":170,"percentile":203},"2025-11-15",0.86647,{"date":205,"score":170,"percentile":206},"2025-11-16",0.86649,{"date":208,"score":170,"percentile":209},"2025-11-17",0.86641,{"date":211,"score":212,"percentile":213},"2025-11-18",0.01078,0.75949,{"date":215,"score":212,"percentile":216},"2025-11-19",0.75955,{"date":218,"score":212,"percentile":219},"2025-11-20",0.75965,{"date":221,"score":170,"percentile":222},"2025-11-21",0.86655,{"date":224,"score":170,"percentile":225},"2025-11-22",0.8665,{"date":227,"score":170,"percentile":228},"2025-11-23",0.86644,{"date":230,"score":170,"percentile":231},"2025-11-24",0.86643,{"date":233,"score":170,"percentile":231},"2025-11-25",{"date":235,"score":170,"percentile":231},"2025-11-26",{"date":237,"score":170,"percentile":194},"2025-11-27",{"date":239,"score":170,"percentile":240},"2025-11-28",0.86629,{"date":242,"score":170,"percentile":243},"2025-11-29",0.86702,{"date":245,"score":170,"percentile":246},"2025-11-30",0.86701,{"date":248,"score":170,"percentile":249},"2025-12-01",0.86759,{"date":251,"score":170,"percentile":252},"2025-12-02",0.86761,{"date":254,"score":170,"percentile":249},"2025-12-03",{"date":256,"score":170,"percentile":257},"2025-12-04",0.86695,{"date":259,"score":170,"percentile":260},"2025-12-05",0.86697,{"date":262,"score":170,"percentile":263},"2025-12-06",0.86694,{"date":265,"score":170,"percentile":266},"2025-12-07",0.86686,{"date":268,"score":170,"percentile":269},"2025-12-08",0.86687,{"date":271,"score":170,"percentile":257},"2025-12-09",{"date":273,"score":170,"percentile":274},"2025-12-10",0.86715,{"date":276,"score":170,"percentile":277},"2025-12-11",0.86722,{"date":279,"score":170,"percentile":280},"2025-12-12",0.86723,{"date":282,"score":170,"percentile":283},"2025-12-13",0.8672,{"date":285,"score":170,"percentile":286},"2025-12-14",0.86714,{"date":288,"score":170,"percentile":289},"2025-12-15",0.86712,{"date":291,"score":170,"percentile":292},"2025-12-16",0.86719,{"date":294,"score":170,"percentile":280},"2025-12-17",{"date":296,"score":170,"percentile":297},"2025-12-18",0.86732,{"date":299,"score":170,"percentile":297},"2025-12-19",{"date":301,"score":170,"percentile":302},"2025-12-20",0.8673,{"date":304,"score":170,"percentile":297},"2025-12-21",{"date":306,"score":170,"percentile":307},"2025-12-22",0.86727,{"date":309,"score":170,"percentile":310},"2025-12-23",0.86729,{"date":312,"score":170,"percentile":313},"2025-12-24",0.86738,{"date":315,"score":170,"percentile":316},"2025-12-25",0.86749,{"date":318,"score":170,"percentile":319},"2025-12-26",0.86751,{"date":321,"score":170,"percentile":322},"2025-12-27",0.86794,{"date":324,"score":170,"percentile":325},"2025-12-28",0.86745,{"date":327,"score":170,"percentile":313},"2025-12-29",{"date":329,"score":170,"percentile":330},"2025-12-30",0.86744,{"date":332,"score":170,"percentile":333},"2025-12-31",0.86754,{"date":335,"score":170,"percentile":336},"2026-01-01",0.86815,{"date":338,"score":170,"percentile":339},"2026-01-02",0.86817,{"date":341,"score":170,"percentile":339},"2026-01-03",{"date":343,"score":170,"percentile":344},"2026-01-04",0.86752,{"date":346,"score":170,"percentile":316},"2026-01-05",{"date":348,"score":170,"percentile":319},"2026-01-06",{"date":350,"score":351,"percentile":352},"2026-01-07",0.0369,0.87569,{"date":354,"score":351,"percentile":355},"2026-01-08",0.87575,{"date":357,"score":351,"percentile":355},"2026-01-09",{"date":359,"score":351,"percentile":360},"2026-01-10",0.87576,{"date":362,"score":351,"percentile":352},"2026-01-11",{"date":364,"score":351,"percentile":365},"2026-01-12",0.87568,{"date":367,"score":351,"percentile":368},"2026-01-13",0.87566,{"date":370,"score":351,"percentile":371},"2026-01-14",0.87578,{"date":373,"score":351,"percentile":371},"2026-01-15",{"date":375,"score":351,"percentile":376},"2026-01-16",0.87583,{"date":378,"score":351,"percentile":379},"2026-01-17",0.87584,{"date":381,"score":351,"percentile":382},"2026-01-18",0.87585,{"date":384,"score":351,"percentile":379},"2026-01-19",{"date":386,"score":351,"percentile":387},"2026-01-20",0.87582,{"date":389,"score":351,"percentile":390},"2026-01-21",0.87586,{"date":392,"score":351,"percentile":393},"2026-01-22",0.87591,{"date":395,"score":351,"percentile":396},"2026-01-23",0.87603,{"date":398,"score":351,"percentile":399},"2026-01-24",0.8761,{"date":401,"score":351,"percentile":402},"2026-01-25",0.87606,{"date":404,"score":351,"percentile":405},"2026-01-26",0.87605,{"date":407,"score":351,"percentile":408},"2026-01-27",0.87607,{"date":410,"score":351,"percentile":411},"2026-01-28",0.87609,{"date":413,"score":351,"percentile":414},"2026-01-29",0.87613,{"date":416,"score":351,"percentile":417},"2026-01-30",0.87615,{"date":419,"score":351,"percentile":399},"2026-01-31",{"date":421,"score":351,"percentile":422},"2026-02-01",0.87679,[424,429,431],{"source":109,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":425,"cvss_v4_0":9},{"baseScore":107,"baseSeverity":426,"vectorString":110,"impactScore":427,"exploitabilityScore":428},"HIGH",6,10,{"source":115,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":430,"cvss_v4_0":9},{"baseScore":107,"baseSeverity":426,"vectorString":110,"impactScore":427,"exploitabilityScore":428},{"source":116,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":432,"cvss_v4_0":9},{"baseScore":107,"baseSeverity":9,"vectorString":110,"impactScore":427,"exploitabilityScore":428},[434,452],{"ecosystem":435,"name":436,"vendor":437,"product":438,"cpe_part":9,"purl_type":439,"purl_namespace":437,"purl_name":438,"source":9,"versions":440},"Go","github.com/traefik/traefik/v2","github.com/traefik/traefik","v2","golang",[441,447],{"version":442,"is_range":443,"range_type":444,"version_start":9,"version_start_type":9,"version_end":445,"version_end_type":446,"fixed_in":9},"lt2_9_10",true,"semver","2.9.10","excluding",{"version":448,"is_range":443,"range_type":444,"version_start":449,"version_start_type":450,"version_end":451,"version_end_type":446,"fixed_in":9},"gte2_10_0_rc1_lt2_10_0_rc2","2.10.0-rc1","including","2.10.0-rc2",{"ecosystem":9,"name":453,"vendor":453,"product":453,"cpe_part":454,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":455},"traefik","a",[456,458,461],{"version":457,"is_range":103,"range_type":109,"version_start":457,"version_start_type":450,"version_end":457,"version_end_type":450,"fixed_in":9},"= 2.10.0-rc1",{"version":459,"is_range":443,"range_type":460,"version_start":9,"version_start_type":9,"version_end":445,"version_end_type":446,"fixed_in":9},"lt2.9.10","cpe",{"version":462,"is_range":103,"range_type":460,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.10.0:rc1"]