Traefik proxy — mTLS bypass via fragmented TLS ClientHello

cve · CVE-2026-32305

Coverage timeline

first 2026-05-06 → last 2026-05-06

Briefs

1 distinct

Sources cited

1 hosts

Sections touched

active_vulns

Co-occurring entities

no co-occurrence

Story timeline

2026-05-06CTI Daily Brief — 2026-05-06
active_vulnsFirst coverage. Fragmented TLS ClientHello causes SNI extraction failure, falling back to non-mTLS config; relevant to zero-trust API gateway deployments. CERT-FR CERTFR-2026-AVI-0531.

Where this entity is cited

active_vulns1

Source distribution

cert.ssi.gouv.fr1 (100%)

External references

NVD · cve.org · CISA KEV

All cited sources (1)

cert.ssi.gouv.frprimaryinlineCERT-FR CERTFR-2026-AVI-0531https://www.cert.ssi.gouv.fr/
source profile · cited in 2026-05-06

Items in briefs about Traefik proxy — mTLS bypass via fragmented TLS ClientHello

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.