10 matches found
Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Kubernetes ingress-nginx
Summary Multiple vulnerabilities in Kubernetes ingress-nginx used by IBM InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2022-4886 DESCRIPTION: Kubernetes could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw with path...
Exploit for Improper Input Validation in Kubernetes Ingress-Nginx
CVE-2023-5044 Ingress Nginx Exploit Proof-Of-Concept This is...
Urgent: New Security Flaws Discovered in NGINX Ingress Controller for Kubernetes
Three unpatched high-severity security flaws have been disclosed in the NGINX Ingress controller for Kubernetes that could be weaponized by a threat actor to steal secret credentials from the cluster. The vulnerabilities are as follows - CVE-2022-4886 CVSS score: 8.8 - Ingress-nginx path...
CVE-2023-5044
creationtimestamp| type| source ---|---|--- 2023-10-26 00:39:26+00:00| seen| https://t.me/cibsecurity/72915 2023-10-30 08:03:26+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5607 2023-10-30 17:00:07+00:00| seen| https://t.me/truesecator/5023 2023-11-01 13:27:15+00:00|...
CVE-2023-5044
Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation...
CVE-2023-5044 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2023-5044 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller-fips, ingress-nginx-controller...
CVE-2023-5044 Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation
Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation...
CVE-2023-5044 Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation
Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation...
CVE-2023-5044
CVE-2023-5044 : Code injection via the nginx.ingress.kubernetes.io/permanent-redirect annotation in Kubernetes ingress-nginx. The root cause is improper input validation of the permanent-redirect annotation, enabling an attacker to inject executable content. Public material confirms a PoC/exploit...