PT-2025-35551 · Opensuse+1 · Opensuse Tumbleweed+1
Johannes Segitz
·
Published
2025-09-02
·
Updated
2025-09-26
·
CVE-2025-46810
CVSS v4.0
8.5
High
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
traefik2 versions prior to 2.11.29
Description
A UNIX Symbolic Link (Symlink) Following vulnerability exists in the packaging of openSUSE Tumbleweed traefik2. This issue allows the
traefik user to escalate to root privileges.Recommendations
Update traefik2 to version 2.11.29 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opensuse Tumbleweed
Traefik2