National Cyber Warfare Foundation (NCWF)

Ingress NGINX RCE Vulnerability Allows Attackers to Compromise Entire Cluster
0 user ratings		2025-03-25 05:03:10
milo
Red Team (CNA)

A series of remote code execution (RCE) vulnerabilities known as “IngressNightmare” have been discovered in the Ingress NGINX Controller for Kubernetes. These vulnerabilities, identified as CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974, pose a critical threat to Kubernetes clusters, allowing attackers to gain unauthorized access to all cluster secrets and potentially take control of the entire cluster. CVE-2025-24514: auth-url Annotation Injection […]


The post Ingress NGINX RCE Vulnerability Allows Attackers to Compromise Entire Cluster appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Divya

Source: gbHackers
Source Link: https://gbhackers.com/ingress-nginx-rce-vulnerability/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.