CVE-2023-47633 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-47633 PUBLISHED CVSS 7.5 HIGH

Traefik is an open source HTTP reverse proxy and load balancer. The traefik docker container uses 100% CPU when it serves as its own backend, which is an automatically generated route resulting from the Docker integration in the default configuration. This issue has been addressed in versions 2.10.6 and 3.0.0-beta5. Users are advised to upgrade. There are no known workarounds for this vulnerability.

EPSS 0.83% · 74.5th percentile

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.83%

74.5th percentile

Affected Products

Vendor	Product	Versions
github.com	traefik/traefik/v2	0
github.com	traefik/traefik/v3	0
traefik	traefik	0, 3.0.0, < 2.10.6

Timeline

Dec 4, 2023 CVE Published
Dec 5, 2023 EPSS Score
Jan 3, 2024 EPSS Score
Feb 1, 2024 EPSS Score
Mar 30, 2024 EPSS Score
Apr 28, 2024 EPSS Score
May 27, 2024 EPSS Score
Jun 25, 2024 EPSS Score
Jul 24, 2024 EPSS Score
Aug 22, 2024 EPSS Score
Oct 19, 2024 EPSS Score
Nov 17, 2024 EPSS Score

References

Open in Interactive Console →