CVE-2023-47633
Aliases:GHSA-6fwg-jrfw-ff7pGO-2023-2377
Advisory lineage Upstream: 0 Downstream: 2
Modified
Published: 04 Dec 2023, 20:36
Last modified:27 Nov 2024, 16:03
Vulnerability Summary
Overall Risk (default)
medium
40/100 CVSS Score
7.5 HIGH
v3.1 (cve.org)
EPSS Score
0.83% LOW
1% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected
Timeline
04 Dec 2023, 20:36
Published
Vulnerability first disclosed
27 Nov 2024, 16:03
Last Modified
Vulnerability information updated
Description
Traefik is an open source HTTP reverse proxy and load balancer. The traefik docker container uses 100% CPU when it serves as its own backend, which is an automatically generated route resulting from the Docker integration in the default configuration. This issue has been addressed in versions 2.10.6 and 3.0.0-beta5. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Trends
Current EPSS score: 0.83%• Percentile: 75%
Techniques & Countermeasures
- CWE-400•Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
Affected Systems
- github.com/traefik•traefik
all
- github.com/traefik/traefik•v2
< 2.10.6
- github.com/traefik/traefik•v3
< 3.0.0-beta5
- traefik•traefik
< 2.10.6 | ≥ 3.0.0-beta1, < 3.0.0-beta5 | ≤ 2.10.5 | 3.0.0:beta1 | 3.0.0:beta2 | 3.0.0:beta3 | 3.0.0:beta4