traefik security advisories
3 threat alerts tracking vulnerabilities and security advisories that affect traefik products.
Vulnios monitors traefik CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent traefik security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2026-44774 — traefik — traefik
Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.46, 3.6.17, and 3.7.1, Traefik's Kubernetes Gateway API provider allows a tenant with HTTPRoute creation permissions to expose the RES
criticalCVE-2026-44774Critical Vulnerability: CVE-2026-39858 — traefik — traefik
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's ForwardAuth and snippet
criticalCVE-2026-39858Critical Vulnerability: CVE-2026-35051 — traefik — traefik
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is an authentication bypass vulnerability in Traefik's ForwardAuth middleware when trustFor
criticalCVE-2026-35051
Track traefik exposure across your environment
Vulnios automatically cross-references your asset inventory against new traefik CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan