CVE-2018-1002104

Published January 14th, 2020

View on NVD ↗

CVSS v3

5.3

MEDIUM

CVSS v2

5

MEDIUM

Affected

1

PROJECT

Description

Versions < 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly.

kubernetes/ingress-nginx

Ingress NGINX Controller for Kubernetes

GitHub

19.5K