Primary

Context

Traefik Inverted TLS Verification Vulnerability in NGINX Ingress Provider Allowing Man-in-the-Middle Attacks

Vulnerability

Patched

A vulnerability exists in Traefik versions 3.5.0 through 3.6.2 within the NGINX ingress Kubernetes provider. The issue arises from inverted TLS verification logic related to the 'nginx.ingress.kubernetes.io/proxy-ssl-verify' annotation. When the annotation is set to 'on', it disables backend TLS certificate verification, contrary to the intended effect. This misconfiguration can lead to man-in-the-middle attacks against HTTPS backends, as operators may mistakenly believe they are enforcing proper certificate validation.

Impact

Exploitation of this vulnerability allows for man-in-the-middle attacks against HTTPS backends, undermining the integrity of TLS verification and potentially leading to unauthorized interception or modification of data.

Remediation

Users can upgrade to Traefik version 3.6.3, where this vulnerability has been patched.

Added: Dec 9, 2025, 1:18 AM

Updated: Dec 9, 2025, 1:18 AM

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

1.7

exploitability

6.8

remediation

7.7

relevance

1.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

1.7

exploitability

6.8

remediation

7.7

relevance

1.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Traefik Inverted TLS Verification Vulnerability in NGINX Ingress Provider Allowing Man-in-the-Middle Attacks

Vulnerability

Impact

Remediation

Affected Products

Traefik

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating