<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>xonatec TI-Feed: Traefik</title>
    <link>https://feed.xonatec.ch/produkte/traefik</link>
    <description>Priorisierte Schwachstellen-Reports für Traefik. Kostenlos &amp; offen, stündlich aktualisiert.</description>
    <language>de</language>
    <lastBuildDate>Wed, 15 Jul 2026 00:00:00 GMT</lastBuildDate>
    <atom:link href="https://feed.xonatec.ch/rss/produkt/traefik.xml" rel="self" type="application/rss+xml" />
    <generator>xonatec TI-Feed RSS Generator</generator>
    <item>
      <title>🔴 CVE-2023-44487 — HTTP/2 Rapid Reset Attack Vulnerability</title>
      <link>https://feed.xonatec.ch/reports/cve-2023-44487</link>
      <guid isPermaLink="true">https://feed.xonatec.ch/reports/cve-2023-44487</guid>
      <pubDate>Wed, 15 Jul 2026 00:00:00 GMT</pubDate>
      <description>Die Schwachstelle ermöglicht einen Denial-of-Service-Angriff durch den sogenannten HTTP/2 Rapid Reset Mechanismus. Wird laut CISA KEV aktiv ausgenutzt. Ausnutzungswahrscheinlichkeit (EPSS): 100.0 %. 2 Produkt(e) betroffen, 2 mit Fix (Schneider Electric CPCERT, EcoStruxure Power Operation).

Severity: Aktiv ausgenutzt · EPSS: 100.0% · aktiv ausgenutzt (KEV)

Betroffene Produkte: schneider-electric-cpcert, synology, solarwinds, veritas, axis-communications, siemens-healthineers, siemens-productcert, oracle-cpu-ebs-peoplesoft-weblogic, eclipse-jetty, caddy, golang, f5, microsoft-defender, kubernetes, nginx, apache-tomcat, net-microsoft, imagemagick, microsoft-windows, node-js, opensearch, debian-dsa, traefik, rockwell-automation, ceph, hpe-storage, ibm-storage, pure-storage, keycloak, red-hat-openshift-rhev, red-hat-rhsa, spring-broadcom-tanzu, zoho-manageengine, openstack, simplehelp, fedora, netapp, jenkins, cisco-webex, cisco, splunk, rocket-chat, phoenix-contact, apple-macos-ios, sonatype-nexus</description>
      <category>Aktiv ausgenutzt</category><category>KEV</category><category>Schneider Electric CPCERT</category><category>Synology</category><category>SolarWinds</category><category>Veritas</category><category>Axis</category><category>Siemens Healthineers</category><category>Siemens ProductCERT</category><category>Oracle (CPU/EBS/PeopleSoft/WebLogic)</category><category>Eclipse Foundation</category><category>Light Code Labs</category><category>Google</category><category>F5</category><category>Microsoft Defender</category><category>Kubernetes</category><category>nginx</category><category>Apache Tomcat</category><category>.NET / Microsoft</category><category>ImageMagick Studio</category><category>Microsoft Windows</category><category>Node.js</category><category>OpenSearch Software Foundation</category><category>Debian (DSA)</category><category>Traefik Labs</category><category>Rockwell Automation</category><category>Ceph</category><category>HPE Storage</category><category>IBM Storage</category><category>Pure Storage</category><category>Red Hat / CNCF</category><category>Red Hat (OpenShift/RHEV)</category><category>Red Hat (RHSA)</category><category>Spring (Broadcom/Tanzu)</category><category>Zoho</category><category>OpenStack</category><category>SimpleHelp Ltd</category><category>Fedora</category><category>NetApp</category><category>Jenkins</category><category>Cisco Webex</category><category>Cisco</category><category>Splunk (Cisco)</category><category>Rocket.Chat</category><category>Phoenix Contact</category><category>Apple (macOS/iOS)</category><category>Sonatype</category>
    </item>
  </channel>
</rss>
