GHSA-863x-868h-968x, CVE-2021-25748
go/k8s.io/ingress-nginx
Ingress-nginx path
sanitization can be bypassed with newline character
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization of the spec.rules[].http.paths[].path
field of an Ingress object (in the networking.k8s.io
or extensions
API group) to obtain the credentials of the ingress-nginx controller. In the default configuration, that credential has access to all secrets in the cluster.
All versions before 1.2.1
Upgrade to version 1.2.1 or above.
2023-05-25
source |