CVE-2022-46153 in Oracle Communications Order and Service Managementinformación

Resumen (Inglés)

Traefik is an open source HTTP reverse proxy and load balancer. In affected versions there is a potential vulnerability in Traefik managing TLS connections. A router configured with a not well-formatted TLSOption is exposed with an empty TLSOption. For instance, a route secured using an mTLS connection set with a wrong CA file is exposed without verifying the client certificates. Users are advised to upgrade to version 2.9.6. Users unable to upgrade should check their logs to detect the error messages and fix your TLS options.

Reservar

2022-11-28

Divulgación

2022-12-09

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
234532	Oracle Communications Order and Service Management Security divulgación de información	200	No está definido	Arreglo oficial	CVE-2022-46153
215169	Traefik divulgación de información	200	No está definido	Arreglo oficial	CVE-2022-46153

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!