A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization of the spec.rules[].http.paths[].path field of an Ingress object (in the networking.k8s.io or extensions API group) to obtain the credential...
7.6CVSS
6.3AI Score
0.001EPSS
8.8CVSS
6.4AI Score
0.001EPSS
8.8CVSS
8.8AI Score
0.003EPSS
8.8CVSS
8.8AI Score
0.001EPSS