CVE-2025-54386 — Path Traversal in Traefik Traefik V2

CWE-22 — Path Traversal CWE-30 — Path Traversal: '\dir\..\filename'6 documents5 sources

Severity

7.3HIGHNVD

EPSS

1.0%

top 22.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Github.com Traefik Traefik V2 Github.com Traefik Traefik V3 Traefik

Timeline

PublishedAug 2

Latest updateAug 11

Description

Traefik is an HTTP reverse proxy and load balancer. In versions 2.11.27 and below, 3.0.0 through 3.4.4 and 3.5.0-rc1, a path traversal vulnerability was discovered in WASM Traefik’s plugin installation mechanism. By supplying a maliciously crafted ZIP archive containing file paths with ../ sequences, an attacker can overwrite arbitrary files on the system outside of the intended plugin directory. This can lead to remote code execution (RCE), privilege escalation, persistence, or denial of servic…

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:P/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Affected Packages4 packages

▶NVDtraefik/traefik3.0.0 — 3.4.4+2

▶Gogithub.com/traefik_traefik_v2< 2.11.28

▶Gogithub.com/traefik_traefik_v33.5.0-rc1 — 3.5.0+1

▶CVEListV5traefik/traefik2.11.27, < 2.11.28+2

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Traefik Client Plugin's Path Traversal Vulnerability Allows Arbitrary File Overwrite and Remote Code Execution in github.com/traefik/traefik↗2025-08-11

▶

CVEList

Traefik's Client Plugin is Vulnerable to Path Traversal, Arbitrary File Overwrites and Remote Code Execution↗2025-08-01

▶

OSV

Traefik Client Plugin's Path Traversal Vulnerability Allows Arbitrary File Overwrite and Remote Code Execution↗2025-08-01

▶

GHSA

Traefik Client Plugin's Path Traversal Vulnerability Allows Arbitrary File Overwrite and Remote Code Execution↗2025-08-01

▶

📋Vendor Advisories

Red Hat

traefik: Traefik's Client Plugin is Vulnerable to Path Traversal, Arbitrary File Overwrites and Remote Code Execution↗2025-08-01

▶