Sven Slootweg (soft-deprecated): "@rune@sound-city.dk Yeah, agreed. But I can't fin…" - Pixietown

Sep 25, 2024, 19:44

S30E12 Rune @rune@sound-city.dk

A 9.8 critical arbitrary execution vulnerability via http requests on Traefik? You'd think we had figured out how to reply to http requests by now

Sep 25, 2024, 20:04

Sven Slootweg (soft-deprecated) @joepie91@pixie.town

@rune I'm not sure where the 'arbitrary execution' part is coming from, as far as I can tell it's "just" header manipulation?

Sep 25, 2024, 20:11

S30E12 Rune @rune@sound-city.dk

@joepie91 that's what cert.europa.eu says in their summary

Sep 25, 2024, 20:12

Sven Slootweg (soft-deprecated) @joepie91@pixie.town

@rune Given their lack of explanation or sources that confirm this, it feels to me like that was an error, to be honest

Sep 25, 2024, 20:17

S30E12 Rune @rune@sound-city.dk

@joepie91 9.8 cve score seems quite high for header manipulation

Sven Slootweg (soft-deprecated) @joepie91@pixie.town

@rune Yeah, agreed. But I can't find anything in either the NIST *or* original advisory suggesting it is anything more than that, other than a vague "things might be worse if the server trusts the header"?

Sep 25, 2024, 20:18 · · Web · · ·

Sep 25, 2024, 20:20

S30E12 Rune @rune@sound-city.dk

@joepie91 yeah, it's either really poorly described or really poorly graded

Sign in to participate in the conversation