Kubernetes Ingress Nginx Vulnerabilities
Kubernetes Ingress-nginx vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Ingress-nginx Configuration Vulnerability in Kubernetes
CVE-2025-1097KubernetesIngress-nginxππΎπ‘EPSS 11%π°8.8HIGHArbitrary Code Execution Vulnerability in Ingress-Nginx by Kubernetes
CVE-2025-1098KubernetesIngress-nginxEPSS 40%8.8HIGHArbitrary Code Execution Vulnerability in Ingress-Nginx Controller of Kubernetes
CVE-2025-1974KubernetesIngress-nginxππ°πΎπ‘EPSS 87%π°9.8CRITICALDirectory Traversal Vulnerability in Ingress-Nginx by Kubernetes
CVE-2025-24513KubernetesIngress-nginx4.8MEDIUMArbitrary Code Execution Vulnerability in nginx Ingress Controller by Kubernetes
CVE-2025-24514KubernetesIngress-nginxEPSS 40%8.8HIGHIngress nginx annotation injection causes arbitrary command execution
CVE-2023-5043KubernetesIngress-nginxπΎπ‘8.8HIGHPermanent Redirect Vulnerability in Nginx Ingress
CVE-2023-5044KubernetesIngress-nginxπΎπ‘7.6HIGHIngress-nginx `path` sanitization can be bypassed with `log_format` directive
CVE-2022-4886KubernetesIngress-nginx6.5MEDIUMIngress-nginx `path` sanitization can be bypassed with newline character
CVE-2021-25748KubernetesKubernetes Ingress-nginx7.6HIGHIngress-nginx path can be pointed to service account token file
CVE-2021-25745KubernetesKubernetes Ingress-nginx7.6HIGHIngress-nginx directive injection via annotations
CVE-2021-25746KubernetesKubernetes Ingress-nginx7.6HIGHIngress-nginx custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces
CVE-2021-25742KubernetesKubernetes Ingress-nginx7.6HIGHKubernetes ingress-nginx Compromise of auth via subset/superset namespace names
CVE-2020-8553KubernetesIngress-nginx5.9MEDIUM