VDB

CVE-2020-15129

CVE-2020-15129 PUBLISHED CVSS 6.099999904632568 MEDIUM

Traefik vulnerable to Open Redirect via handling of X-Forwarded-Prefix header

EPSS 76.84% · 99.0th percentile

Risk Scores

CVSS v3.1
6.099999904632568
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N
EPSS Score
76.84%
99.0th percentile

Affected Products

VendorProductVersions
github.comcontainous/traefik/api1.5.0-rc5
github.comtraefik/traefik/api1.5.0-rc5
github.comtraefik/traefik/v20, 2.3.0-rc1
containoustraefik< 1.7.26, *
github.comcontainous/traefik/v22.3.0-rc1, 0
traefiktraefik2.2.0, 2.3.0, 2.3.0
github.comcontainous/traefik1.5.0-rc5
github.comtraefik/traefik/v2/pkg/api0, 2.3.0-rc1
github.comcontainous/traefik/v2/pkg/api0, 2.3.0-rc1
github.comtraefik/traefik1.5.0-rc5

Timeline

  • Jul 30, 2020 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Aug 4, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Dec 17, 2024 EPSS Score
  • Mar 17, 2025 EPSS Score
  • Mar 18, 2025 EPSS Score
  • Mar 28, 2025 EPSS Score
  • Mar 29, 2025 EPSS Score
  • Mar 30, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›