[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-66491":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T14:55:36.164Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":31,"downstream":32,"duplicates":37,"related":38,"reserved_at":9,"published_at":43,"modified_at":44,"state":45,"summary":46,"references_raw":55,"kevs":87,"epss":88,"epss_history":91,"metrics":337,"affected":347},"CVE-2025-66491","Traefik is an HTTP reverse proxy and load balancer. Versions 3.5.0 through 3.6.2 have inverted TLS verification logic in the nginx.ingress.kubernetes.io/proxy-ssl-verify annotation. Setting the annotation to \"on\" (intending to enable backend TLS certificate verification) actually disables verification, allowing man-in-the-middle attacks against HTTPS backends when operators believe they are protected. This issue is fixed in version 3.6.3.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-295","Improper Certificate Validation","The product does not validate, or incorrectly validates, a certificate.","weakness","Draft","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-459","Creating a Rogue Certification Authority Certificate",[],{"id":24,"name":25,"techniques":26},"CAPEC-475","Signature Spoofing by Improper Validation",[],[],[29,30],"GHSA-7vww-mvcr-x6vj","GO-2025-4205",[],[33,35],{"_key":34},"SUSE-SU-2026:0037-1",{"_key":36},"OPENSUSE-SU-2026:10020-1",[],[39,40,41],{"_key":34},{"_key":36},{"_key":42},"CGA-6H5R-M494-HR3J","2025-12-09T00:38:39.208Z","2025-12-09T16:03:28.511Z","Analyzed",{"cisa_kev":47,"cisa_ransomware":47,"cisa_vendor":9,"epss_severity":48,"epss_score":49,"severity":50,"severity_score":51,"severity_version":52,"severity_source":53,"severity_vector":54,"severity_status":45},false,"low",0.00012,"medium",5.9,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",[56,67,73,78,82],{"url":57,"sources":58,"tags":61},"https://github.com/traefik/traefik/security/advisories/GHSA-7vww-mvcr-x6vj",[53,59,60],"nvd","osv_go",[62,63,64,65,66],"X Refsource CONFIRM","Patch","Vendor Advisory","WEB","Advisory",{"url":68,"sources":69,"tags":70},"https://github.com/traefik/traefik/commit/14a1aedf5704673d875d210d7bacf103a43c77e4",[53,59,60],[71,63,65,72],"X Refsource MISC","FIX",{"url":74,"sources":75,"tags":76},"https://github.com/traefik/traefik/releases/tag/v3.6.3",[53,59,60],[71,77,65],"Release Notes",{"url":79,"sources":80,"tags":81},"https://nvd.nist.gov/vuln/detail/CVE-2025-66491",[60],[66],{"url":83,"sources":84,"tags":85},"https://github.com/traefik/traefik",[60],[86],"PACKAGE",[],{"date":89,"score":49,"percentile":90},"2026-06-06",0.01842,[92,96,98,101,104,106,109,113,116,119,121,123,126,128,130,133,136,138,141,143,146,148,151,153,155,157,160,163,166,168,170,173,175,179,181,184,187,190,192,194,197,200,202,205,208,211,214,217,219,222,225,228,231,234,237,240,242,245,248,251,254,257,260,263,265,268,271,274,277,280,283,286,289,292,295,297,299,302,305,307,310,313,315,318,321,324,326,329,332,335],{"date":93,"score":94,"percentile":95},"2025-12-09",0.00006,0.00291,{"date":97,"score":94,"percentile":95},"2025-12-10",{"date":99,"score":94,"percentile":100},"2025-12-11",0.00294,{"date":102,"score":94,"percentile":103},"2025-12-12",0.00299,{"date":105,"score":94,"percentile":103},"2025-12-13",{"date":107,"score":94,"percentile":108},"2025-12-14",0.00295,{"date":110,"score":111,"percentile":112},"2025-12-15",0.00008,0.00503,{"date":114,"score":111,"percentile":115},"2025-12-16",0.00504,{"date":117,"score":111,"percentile":118},"2025-12-17",0.00506,{"date":120,"score":111,"percentile":112},"2025-12-18",{"date":122,"score":111,"percentile":112},"2025-12-19",{"date":124,"score":111,"percentile":125},"2025-12-20",0.00502,{"date":127,"score":111,"percentile":125},"2025-12-21",{"date":129,"score":111,"percentile":115},"2025-12-22",{"date":131,"score":111,"percentile":132},"2025-12-23",0.00509,{"date":134,"score":111,"percentile":135},"2025-12-24",0.0051,{"date":137,"score":111,"percentile":135},"2025-12-25",{"date":139,"score":111,"percentile":140},"2025-12-26",0.00511,{"date":142,"score":111,"percentile":132},"2025-12-27",{"date":144,"score":111,"percentile":145},"2025-12-28",0.00512,{"date":147,"score":111,"percentile":135},"2025-12-29",{"date":149,"score":111,"percentile":150},"2025-12-30",0.00508,{"date":152,"score":111,"percentile":118},"2025-12-31",{"date":154,"score":111,"percentile":118},"2026-01-01",{"date":156,"score":111,"percentile":135},"2026-01-02",{"date":158,"score":111,"percentile":159},"2026-01-03",0.00562,{"date":161,"score":111,"percentile":162},"2026-01-04",0.00552,{"date":164,"score":111,"percentile":165},"2026-01-05",0.00553,{"date":167,"score":111,"percentile":162},"2026-01-06",{"date":169,"score":111,"percentile":162},"2026-01-07",{"date":171,"score":111,"percentile":172},"2026-01-08",0.00556,{"date":174,"score":111,"percentile":159},"2026-01-09",{"date":176,"score":177,"percentile":178},"2026-01-10",0.00009,0.00663,{"date":180,"score":177,"percentile":178},"2026-01-11",{"date":182,"score":177,"percentile":183},"2026-01-12",0.00662,{"date":185,"score":177,"percentile":186},"2026-01-13",0.0066,{"date":188,"score":177,"percentile":189},"2026-01-14",0.00659,{"date":191,"score":177,"percentile":183},"2026-01-15",{"date":193,"score":177,"percentile":183},"2026-01-16",{"date":195,"score":177,"percentile":196},"2026-01-17",0.00661,{"date":198,"score":177,"percentile":199},"2026-01-18",0.00666,{"date":201,"score":177,"percentile":183},"2026-01-19",{"date":203,"score":177,"percentile":204},"2026-01-20",0.00658,{"date":206,"score":177,"percentile":207},"2026-01-21",0.00655,{"date":209,"score":177,"percentile":210},"2026-01-22",0.00657,{"date":212,"score":177,"percentile":213},"2026-01-23",0.00664,{"date":215,"score":177,"percentile":216},"2026-01-24",0.00669,{"date":218,"score":177,"percentile":216},"2026-01-25",{"date":220,"score":177,"percentile":221},"2026-01-26",0.0067,{"date":223,"score":177,"percentile":224},"2026-01-27",0.00673,{"date":226,"score":177,"percentile":227},"2026-01-28",0.00671,{"date":229,"score":177,"percentile":230},"2026-01-29",0.00675,{"date":232,"score":177,"percentile":233},"2026-01-30",0.00684,{"date":235,"score":177,"percentile":236},"2026-01-31",0.00689,{"date":238,"score":177,"percentile":239},"2026-02-01",0.00693,{"date":241,"score":177,"percentile":239},"2026-02-02",{"date":243,"score":177,"percentile":244},"2026-02-03",0.00702,{"date":246,"score":177,"percentile":247},"2026-02-04",0.00708,{"date":249,"score":177,"percentile":250},"2026-02-05",0.00713,{"date":252,"score":177,"percentile":253},"2026-02-06",0.00725,{"date":255,"score":177,"percentile":256},"2026-02-07",0.0073,{"date":258,"score":177,"percentile":259},"2026-02-08",0.00728,{"date":261,"score":177,"percentile":262},"2026-02-09",0.00724,{"date":264,"score":177,"percentile":262},"2026-02-10",{"date":266,"score":177,"percentile":267},"2026-02-11",0.00744,{"date":269,"score":177,"percentile":270},"2026-02-12",0.00742,{"date":272,"score":177,"percentile":273},"2026-02-13",0.00739,{"date":275,"score":177,"percentile":276},"2026-02-14",0.0074,{"date":278,"score":177,"percentile":279},"2026-02-15",0.00811,{"date":281,"score":177,"percentile":282},"2026-02-16",0.00806,{"date":284,"score":177,"percentile":285},"2026-02-17",0.00798,{"date":287,"score":177,"percentile":288},"2026-02-18",0.00881,{"date":290,"score":177,"percentile":291},"2026-02-19",0.00884,{"date":293,"score":177,"percentile":294},"2026-02-20",0.00886,{"date":296,"score":177,"percentile":291},"2026-02-21",{"date":298,"score":177,"percentile":291},"2026-02-22",{"date":300,"score":177,"percentile":301},"2026-02-23",0.00873,{"date":303,"score":177,"percentile":304},"2026-02-24",0.00865,{"date":306,"score":177,"percentile":304},"2026-02-25",{"date":308,"score":177,"percentile":309},"2026-02-26",0.00864,{"date":311,"score":177,"percentile":312},"2026-02-27",0.00871,{"date":314,"score":177,"percentile":301},"2026-02-28",{"date":316,"score":177,"percentile":317},"2026-03-01",0.00872,{"date":319,"score":177,"percentile":320},"2026-03-02",0.00867,{"date":322,"score":177,"percentile":323},"2026-03-03",0.00887,{"date":325,"score":177,"percentile":323},"2026-03-04",{"date":327,"score":177,"percentile":328},"2026-03-05",0.00897,{"date":330,"score":177,"percentile":331},"2026-03-06",0.00894,{"date":333,"score":177,"percentile":334},"2026-03-07",0.00891,{"date":336,"score":177,"percentile":331},"2026-03-08",[338,343,345],{"source":53,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":339,"cvss_v4_0":9},{"baseScore":51,"baseSeverity":340,"vectorString":54,"impactScore":341,"exploitabilityScore":342},"MEDIUM",6,5.6,{"source":59,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":344,"cvss_v4_0":9},{"baseScore":51,"baseSeverity":340,"vectorString":54,"impactScore":341,"exploitabilityScore":342},{"source":60,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":346,"cvss_v4_0":9},{"baseScore":51,"baseSeverity":9,"vectorString":54,"impactScore":341,"exploitabilityScore":342},[348,359,364,374],{"ecosystem":349,"name":350,"vendor":351,"product":352,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":352,"source":9,"versions":354},"Go","github.com/traefik/traefik","github.com/traefik","traefik","golang",[355],{"version":356,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"all",true,"semver",{"ecosystem":349,"name":360,"vendor":350,"product":361,"cpe_part":9,"purl_type":353,"purl_namespace":350,"purl_name":361,"source":9,"versions":362},"github.com/traefik/traefik/v2","v2",[363],{"version":356,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":349,"name":365,"vendor":350,"product":366,"cpe_part":9,"purl_type":353,"purl_namespace":350,"purl_name":366,"source":9,"versions":367},"github.com/traefik/traefik/v3","v3",[368],{"version":369,"is_range":357,"range_type":358,"version_start":370,"version_start_type":371,"version_end":372,"version_end_type":373,"fixed_in":9},"gte3_5_0_lt3_6_3","3.5.0","including","3.6.3","excluding",{"ecosystem":9,"name":352,"vendor":352,"product":352,"cpe_part":375,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":376},"a",[377],{"version":378,"is_range":357,"range_type":379,"version_start":370,"version_start_type":371,"version_end":372,"version_end_type":373,"fixed_in":9},"gte3.5.0_lt3.6.3","cpe"]