Kubernetes Ingress Nginx Vulnerabilities
Kubernetes Ingress-nginx vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Ingress-nginx Configuration Vulnerability in Kubernetes
CVE-2025-1097KubernetesIngress-nginxππΎπ‘π°8.8HIGHArbitrary Code Execution Vulnerability in Ingress-Nginx Controller of Kubernetes
CVE-2025-1974KubernetesIngress-nginxππΎπ‘EPSS 83%π°9.8CRITICALArbitrary Code Execution Vulnerability in Ingress-Nginx by Kubernetes
CVE-2025-1098KubernetesIngress-nginx8.8HIGHDirectory Traversal Vulnerability in Ingress-Nginx by Kubernetes
CVE-2025-24513KubernetesIngress-nginx4.8MEDIUMArbitrary Code Execution Vulnerability in nginx Ingress Controller by Kubernetes
CVE-2025-24514KubernetesIngress-nginx8.8HIGHPermanent Redirect Vulnerability in Nginx Ingress
CVE-2023-5044KubernetesIngress-nginxπΎπ‘EPSS 22%8.8HIGHIngress nginx annotation injection causes arbitrary command execution
CVE-2023-5043KubernetesIngress-nginxπΎπ‘EPSS 11%8.8HIGHIngress-nginx `path` sanitization can be bypassed with `log_format` directive
CVE-2022-4886KubernetesIngress-nginx6.5MEDIUMIngress-nginx `path` sanitization can be bypassed with newline character
CVE-2021-25748KubernetesKubernetes Ingress-nginx7.6HIGHIngress-nginx path can be pointed to service account token file
CVE-2021-25745KubernetesKubernetes Ingress-nginx7.6HIGHIngress-nginx directive injection via annotations
CVE-2021-25746KubernetesKubernetes Ingress-nginx7.6HIGHIngress-nginx custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces
CVE-2021-25742KubernetesKubernetes Ingress-nginx7.6HIGHKubernetes ingress-nginx Compromise of auth via subset/superset namespace names
CVE-2020-8553KubernetesIngress-nginx5.9MEDIUM
25 March 2025
25 October 2023
24 May 2023
6 May 2022
29 October 2021
29 July 2020
No more vulnerabilities to load.