417 matches found
Ingress-Nginx Controller - Configuration Injection via Unsanitized `auth-tls-match-cn` Annotation
A security issue was discovered in ingress-nginx https-//github.com/kubernetes/ingress-nginx where the auth-tls-match-cn Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of...
GHSA-JX8C-56MG-H6VP vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-4G2F-XCPH-2335 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-9H3P-52VH-959W vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-24514 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-2PF9-VR92-6H3V vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-24513 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-24512 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-1580 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-9H3P-52VH-959W vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
GHSA-JX8C-56MG-H6VP vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2026-24513 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
GHSA-2PF9-VR92-6H3V vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2026-1580 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
GHSA-4G2F-XCPH-2335 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2026-24514 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
Ingress-Nginx Controller - Configuration Injection via Unsanitized `auth-url` Annotation
A security issue was discovered in ingress-nginx https-//github.com/kubernetes/ingress-nginx where the auth-url Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets...
Ingress-Nginx Controller - Configuration Injection via Unsanitized Mirror Annotations
A security issue was discovered in ingress-nginx https-//github.com/kubernetes/ingress-nginx where the mirror-target and mirror-host Ingress annotations can be used to inject arbitrary configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx...
GHSA-2388-JP8V-FG9W vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2026-48142 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...