252 matches found
Ingress-Nginx Admission Controller RCE Escalation
A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to disclosure of Secrets accessible to the controller. Note...
About Remote Code Execution – Kubernetes (CVE-2025-1974) vulnerability
About Remote Code Execution - Kubernetes CVE-2025-1974 vulnerability. An unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to disclosure of Secrets accessible to the controller. In the default...
Vulnerabilities fixed in Kubernetes Ingress NGINX Controller
Kubernetes has fixed a number of vulnerabilities in the Ingress NGINX Controller. These vulnerabilities allow malicious actors to perform unauthenticated remote code execution RCE. The vulnerabilities are located in the ingress-nginx controller. These vulnerabilities include a critical remote cod...
Remote code execution vulnerability in Ingress NGINX Controller (CNVD-2025-05883)
Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that can be exploited by an attacker to gain access to sensitive data such as credentials and keys across...
Remote code execution vulnerability in Ingress NGINX Controller (CNVD-2025-05884)
Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that can be exploited by an attacker to gain access to sensitive data such as credentials and keys across...
Remote Code Execution Vulnerability in Ingress NGINX Controller (CNVD-2025-05885)
Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that stems from the mirror-target and mirror-host Ingress annotations can be used to inject arbitrary...
Remote Code Execution Vulnerability in Ingress NGINX Controller (CNVD-2025-05886)
Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that stems from auth-tls-match-cn Ingress annotations can be used to inject configurations, which could le...
CVE-2025-1098 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-242M-6H72-7HGP vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-823X-FV5P-H7HW vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-VG63-W3P9-JC9M vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2025-1974 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2025-24514 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2025-24513 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-FWWP-XCXW-39VQ vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-MGVX-RPFC-9MPV vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2025-1097 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2025-24514 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2025-1097 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2025-1974 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...