CVE-2021-25746Improper Input Validation in Kubernetes Ingress-nginx

CWE-20Improper Input ValidationCWE-94Code Injection5 documents5 sources
Severity
7.1HIGHNVD
CNA7.6
EPSS
0.6%
top 31.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Kubernetes Ingress-nginxKubernetes Ingress-nginx
Timeline
PublishedMay 6
Latest updateNov 24

Description

A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use .metadata.annotations in an Ingress object (in the networking.k8s.io or extensions API group) to obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:NExploitability: 2.8 | Impact: 4.2

Affected Packages2 packages

CVEListV5kubernetes/kubernetes_ingress-nginxunspecified1.2.0

🔴Vulnerability Details

2
GHSA
GHSA-79xv-4hmm-pw72: A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use2022-05-07
CVEList
Ingress-nginx directive injection via annotations2022-05-06

📋Vendor Advisories

1
Red Hat
k8s.io/ingress-nginx: directive injection via annotations2022-04-22

💬Community

1
HackerOne
Ingress nginx annotation injection causes arbitrary command execution2023-11-24
CVE-2021-25746 — Improper Input Validation | cvebase