github.com/kubernetes/ingress-nginx is vulnerable to information disclosure. An attacker can obtain all the secrets in the cluster through the custom snippets feature when creating or updating ingress objects.
github.com/kubernetes/ingress-nginx/issues/7837
github.com/kubernetes/ingress-nginx/pull/7666
github.com/kubernetes/ingress-nginx/pull/7666/commits/5173556cd116ea9c863ae35d3553eb9775085cfb
github.com/kubernetes/ingress-nginx/pull/7670
github.com/kubernetes/ingress-nginx/pull/7670/commits/b5d8fa289b9137b1dbab8dc5300bda119a4634b1
groups.google.com/g/kubernetes-security-announce/c/mT4JJxi9tQY
security.netapp.com/advisory/ntap-20211203-0001/