ctipilot.chSwitzerland · Europe · Public sector

Traefik proxy — mTLS bypass via fragmented TLS ClientHello

cve · CVE-2026-32305

First covered
2026-05-06
Last covered
2026-05-06
Appearances
1

All cited sources for this topic (1)

Story timeline

  1. 2026-05-06CTI Daily Brief — 2026-05-06
    active_vulnsFirst coverage. Fragmented TLS ClientHello causes SNI extraction failure, falling back to non-mTLS config; relevant to zero-trust API gateway deployments. CERT-FR CERTFR-2026-AVI-0531.