CVE-2020-8553MEDIUMCVSS 5.9fixed in 0.28.0·≥ unspecified, < 0.28.02020-07-29
CVE-2020-8553 [MEDIUM] CWE-73 CVE-2020-8553: The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to cre
The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to create namespaces and to read and create ingress objects to overwrite the password file of another ingress which uses nginx.ingress.kubernetes.io/auth-type: basic and which has a hyphenated namespace or secret name.
cvelistv5nvd