Описание
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
EPSS
Процентиль: 67%
0.0054
Низкий
CVE ID
Связанные уязвимости
CVSS3: 7.6
redhat
больше 4 лет назад
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
CVSS3: 7.6
nvd
больше 4 лет назад
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
EPSS
Процентиль: 67%
0.0054
Низкий