kubernetes/ingress-nginx

GitHub

github.com

kubernetes.github.io

Releases354

Frequency1 week 2 days

Last Release 3 months ago

Stars19.5K

Ingress NGINX Controller for Kubernetes

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-7646 ↗	Aug 16, 2024Friday, 16 August 2024, 18:15	8.8 HIGH	—
A security issue was discovered in ingress-nginx where an actor with permission to create Ingress objects (in the `networking.k8s.io` or `extensions` API group) can bypass annotation validation to inject arbitrary commands and obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.
CVE-2023-5043 ↗	Oct 25, 2023Wednesday, 25 October 2023, 20:15	7.6 HIGH	—
Ingress nginx annotation injection causes arbitrary command execution.
CVE-2023-5044 ↗	Oct 25, 2023Wednesday, 25 October 2023, 20:15	7.6 HIGH	—
Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation.
CVE-2022-4886 ↗	Oct 25, 2023Wednesday, 25 October 2023, 20:15	8.8 HIGH	—
Ingress-nginx `path` sanitization can be bypassed with `log_format` directive.
CVE-2021-25748 ↗	May 24, 2023Wednesday, 24 May 2023, 17:15	7.6 HIGH	—
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization of the `spec.rules[].http.paths[].path` field of an Ingress object (in the `networking.k8s.io` or `extensions` API group) to obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.
CVE-2021-25745 ↗	May 6, 2022Friday, 6 May 2022, 01:15	7.6 HIGH	5.5 MEDIUM
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the spec.rules[].http.paths[].path field of an Ingress object (in the networking.k8s.io or extensions API group) to obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.
CVE-2021-25746 ↗	May 6, 2022Friday, 6 May 2022, 01:15	7.6 HIGH	5.5 MEDIUM
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use .metadata.annotations in an Ingress object (in the networking.k8s.io or extensions API group) to obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.
CVE-2021-25742 ↗	Oct 29, 2021Friday, 29 October 2021, 04:15	7.6 HIGH	5.5 MEDIUM
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
CVE-2020-8553 ↗	Jul 29, 2020Wednesday, 29 July 2020, 15:15	5.9 MEDIUM	4.9 MEDIUM
The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to create namespaces and to read and create ingress objects to overwrite the password file of another ingress which uses nginx.ingress.kubernetes.io/auth-type: basic and which has a hyphenated namespace or secret name.
CVE-2018-1002104 ↗	Jan 14, 2020Tuesday, 14 January 2020, 21:15	5.3 MEDIUM	5 MEDIUM
Versions < 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly.
CVE-2019-20372 ↗	Jan 9, 2020Thursday, 9 January 2020, 21:15	5.3 MEDIUM	4.3 MEDIUM
NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.