Filter
-Infinity
0
Trending
Kubernetes Nginx Ingress Controller[kubernetes] CVE-2024-7646: Ingss-nginx Annotation Validation Bypass
8.8
EPSS
0.04%
First published (updated )
go/k8s.io/ingress-nginxIngress nginx annotation injection causes arbitrary command execution
8.8
First published (updated )
go/k8s.io/ingress-nginxCode injection via nginx.ingress.kubernetes.io/permanent-redirect annotation
8.8
First published (updated )
go/k8s.io/ingress-nginxIngress-nginx `path` sanitization can be bypassed with `log_format` directive
8.8
First published (updated )
Kubernetes Nginx Ingress ControllerIngress-nginx path can be pointed to service account token file
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
F5 NGINXNGINX ngx_http_mp4_module vulnerability CVE-2022-41741
7.8
First published (updated )
go/k8s.io/ingress-nginxIngress-nginx `path` sanitization can be bypassed with newline character
7.6
First published (updated )
Kubernetes Nginx Ingress ControllerIngress-nginx custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces
7.6
First published (updated )
Kubernetes Nginx Ingress ControllerIngress-nginx directive injection via annotations
7.6
First published (updated )
Microsoft Windows 10- Rapid Reset HTTP/2 vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
F5 NGINXNGINX ngx_http_mp4_module vulnerability CVE-2022-41742
7.1
First published (updated )
Kubernetes Nginx Ingress ControllerNGINX ngx_http_hls_module vulnerability CVE-2022-41743
7
First published (updated )
Kubernetes Nginx Ingress ControllerOn version 2.x before 2.0.3 and 1.x before 1.12.3, the command line restriction that controls snippe…
6.5
First published (updated )
Kubernetes Nginx Ingress ControllerNGINX Ingress Controller vulnerability CVE-2022-30535
6.5
First published (updated )
go/k8s.io/ingress-nginxKubernetes ingress-nginx Compromise of auth via subset/superset namespace names
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Kubernetes Nginx Ingress ControllerNGINX OpenID Connect Vulnerability
5.4
First published (updated )
F5 BIG-IP and BIG-IQ Centralized ManagementThe HTTP/2 protocol allows a denial of service (server resource consumption) because request cancell…
5.3
First published (updated )
Kubernetes Nginx Ingress ControllerA session fixation issue was discovered in the NGINX OpenID Connect reference implementation, where …
First published (updated )
[kubernetes] CVE-2024-7646: Ingss-nginx Annotation Validation Bypass
First published (updated )
[kubernetes] CVE-2023-5043: Ingress nginx annotation injection causes arbitrary command execution
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
[kubernetes] CVE-2022-4886: Ingress-nginx `path` sanitization can be bypassed with `log_format` directive
First published (updated )
[kubernetes] CVE-2023-5044: Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation
First published (updated )