exploitDog

GHSA-38cm-wqx5-m22m

Опубликовано: 22 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

On version 2.x before 2.0.3 and 1.x before 1.12.3, the command line restriction that controls snippet use with NGINX Ingress Controller does not apply to Ingress objects. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

On version 2.x before 2.0.3 and 1.x before 1.12.3, the command line restriction that controls snippet use with NGINX Ingress Controller does not apply to Ingress objects. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Ссылки

EPSS

Процентиль: 39%

0.00178

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2021-23055

CVSS3: 6.5

nvd

почти 4 года назад

On version 2.x before 2.0.3 and 1.x before 1.12.3, the command line restriction that controls snippet use with NGINX Ingress Controller does not apply to Ingress objects. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

BDU:2022-02986

CVSS3: 6.5

fstec

около 5 лет назад

Уязвимость обработчика командной строки платформы мониторинга и управления приложениями NGINX Ingress Controller, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 39%

0.00178

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-732