CVE-2026-41174 | Traefik up to 2.11.42/3.6.13/3.7.0-rc.1 Reverse Proxy spec.chain.middlewares middlewares[] authorization

A vulnerability was found in Traefik up to 2.11.42/3.6.13/3.7.0-rc.1. It has been classified as problematic. This affects the function spec.chain.middlewares of the component Reverse Proxy Handler. This manipulation of the argument middlewares[] causes incorrect authorization.

The identification of this vulnerability is CVE-2026-41174. The attack can only be executed locally. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More