A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
CPE | Name | Operator | Version |
---|---|---|---|
ingress-nginx | eq | 1.0.0 | |
ingress-nginx | lt | 0.49.1 |