Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
KubernetesIngress-nginx

4 matches found

CVE
CVEadded 2023/10/25 8:15 p.m.220 views

CVE-2023-5044

Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation.

8.8CVSS8.3AI score0.06802EPSS
CVE
CVEadded 2023/10/25 8:15 p.m.214 views

CVE-2023-5043

Ingress nginx annotation injection causes arbitrary command execution.

8.8CVSS8.5AI score0.03363EPSS
CVE
CVEadded 2023/10/25 8:15 p.m.138 views

CVE-2022-4886

Ingress-nginx path sanitization can be bypassed with log_format directive.

8.8CVSS7.4AI score0.00192EPSS
CVE
CVEadded 2023/05/24 5:15 p.m.113 views

CVE-2021-25748

A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization of the spec.rules[].http.paths[].path field of an Ingress object (in the networking.k8s.io or extensions API group) to obtain the credential...

7.6CVSS6.7AI score0.00041EPSS