Kubernetes Kubernetes Ingress-nginx
4 CVEs affecting Kubernetes Kubernetes Ingress-nginx. Latest disclosed: 2023-05-24. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-25748 | High | 7.6 | 2023-05-24 | A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization… |
CVE-2021-25746 | High | 7.6 | 2022-05-06 | A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use .metadata.annotations in an Ingress object (in… |
CVE-2021-25745 | High | 7.6 | 2022-05-06 | A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the spec.rules[].http.paths[].path field of an… |
CVE-2021-25742 | High | 7.6 | 2021-10-29 | A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secre… |