CVE-2023-47633 — Uncontrolled Resource Consumption in Traefik

CWE-400 — Uncontrolled Resource Consumption CWE-770 — Allocation of Resources Without Limits or Throttling5 documents4 sources

Severity

7.5HIGHNVD

EPSS

0.8%

top 25.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Traefik Github.com Traefik Traefik V2 Github.com Traefik Traefik V3

Timeline

PublishedDec 4

Latest updateAug 21

Description

Traefik is an open source HTTP reverse proxy and load balancer. The traefik docker container uses 100% CPU when it serves as its own backend, which is an automatically generated route resulting from the Docker integration in the default configuration. This issue has been addressed in versions 2.10.6 and 3.0.0-beta5. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5traefik/traefik< 2.10.6+1

▶Gogithub.com/traefik_traefik_v2< 2.10.6

▶Gogithub.com/traefik_traefik_v3< 3.0.0-beta5

▶NVDtraefik/traefik2.10.5+1

🔴Vulnerability Details

OSV

Traefik docker container using 100% CPU in github.com/traefik/traefik↗2024-08-21

▶

GHSA

Traefik docker container using 100% CPU↗2023-12-05

▶

OSV

Traefik docker container using 100% CPU↗2023-12-05

▶

CVEList

Uncontrolled Resource Consumption in Traefik↗2023-12-04

▶