Описание
A security issue was discovered in ingress-nginx where the validating admission controller feature is subject to a denial of service condition. By sending large requests to the validating admission controller, an attacker can cause memory consumption, which may result in the ingress-nginx controller pod being killed or the node running out of memory.
EPSS
Процентиль: 12%
0.00039
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-770
Связанные уязвимости
CVSS3: 6.5
github
4 дня назад
ingress-nginx vulnerable to Allocation of Resources Without Limits or Throttling
EPSS
Процентиль: 12%
0.00039
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-770