Lucene search
K

252 matches found

Vaadin
Vaadin
added 2025/03/31 12:0 a.m.44 views

Ingress-Nginx Admission Controller RCE Escalation

A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to disclosure of Secrets accessible to the controller. Note...

9.8CVSS7.7AI score0.99098EPSS
Exploits20Affected Software1
Information Security Automation
Information Security Automation
added 2025/03/27 6:51 p.m.24 views

About Remote Code Execution – Kubernetes (CVE-2025-1974) vulnerability

About Remote Code Execution - Kubernetes CVE-2025-1974 vulnerability. An unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to disclosure of Secrets accessible to the controller. In the default...

9.8CVSS9.4AI score0.99098EPSS
Exploits21
NCSC
NCSC
added 2025/03/27 2:41 p.m.7 views

Vulnerabilities fixed in Kubernetes Ingress NGINX Controller

Kubernetes has fixed a number of vulnerabilities in the Ingress NGINX Controller. These vulnerabilities allow malicious actors to perform unauthenticated remote code execution RCE. The vulnerabilities are located in the ingress-nginx controller. These vulnerabilities include a critical remote cod...

9.8CVSS9.7AI score0.99098EPSS
Exploits21References6
CNVD
CNVD
added 2025/03/27 12:0 a.m.8 views

Remote code execution vulnerability in Ingress NGINX Controller (CNVD-2025-05883)

Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that can be exploited by an attacker to gain access to sensitive data such as credentials and keys across...

9.8CVSS8.1AI score0.99098EPSS
Exploits20References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.20 views

Remote code execution vulnerability in Ingress NGINX Controller (CNVD-2025-05884)

Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that can be exploited by an attacker to gain access to sensitive data such as credentials and keys across...

8.8CVSS8.1AI score0.31809EPSS
Exploits8References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.12 views

Remote Code Execution Vulnerability in Ingress NGINX Controller (CNVD-2025-05885)

Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that stems from the mirror-target and mirror-host Ingress annotations can be used to inject arbitrary...

8.8CVSS8.1AI score0.83066EPSS
Exploits7References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.14 views

Remote Code Execution Vulnerability in Ingress NGINX Controller (CNVD-2025-05886)

Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that stems from auth-tls-match-cn Ingress annotations can be used to inject configurations, which could le...

8.8CVSS8.2AI score0.34677EPSS
Exploits7References1
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.45 views

CVE-2025-1098 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

8.8CVSS7.5AI score0.83066EPSS
Exploits7
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.13 views

GHSA-242M-6H72-7HGP vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.13 views

GHSA-823X-FV5P-H7HW vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.14 views

GHSA-VG63-W3P9-JC9M vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.31 views

CVE-2025-1974 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

9.8CVSS7.5AI score0.99098EPSS
Exploits20
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.26 views

CVE-2025-24514 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

8.8CVSS7.5AI score0.31809EPSS
Exploits8
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.27 views

CVE-2025-24513 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

4.8CVSS7.5AI score0.03517EPSS
Exploits0
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.11 views

GHSA-FWWP-XCXW-39VQ vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.13 views

GHSA-MGVX-RPFC-9MPV vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/03/26 10:43 p.m.32 views

CVE-2025-1097 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

8.8CVSS7.5AI score0.34677EPSS
Exploits7
Chainguard
Chainguard
added 2025/03/26 10:13 p.m.30 views

CVE-2025-24514 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...

8.8CVSS6.6AI score0.31809EPSS
Exploits8
Chainguard
Chainguard
added 2025/03/26 10:13 p.m.23 views

CVE-2025-1097 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...

8.8CVSS6.6AI score0.34677EPSS
Exploits7
Chainguard
Chainguard
added 2025/03/26 10:13 p.m.20 views

CVE-2025-1974 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...

9.8CVSS7.1AI score0.99098EPSS
Exploits20
Rows per page
Query Builder