Unrated severityNVD Advisory· Published Aug 4, 2022· Updated Sep 16, 2024
NGINX Ingress Controller vulnerability CVE-2022-30535
CVE-2022-30535
Description
In versions 2.x before 2.3.0 and all versions of 1.x, An attacker authorized to create or update ingress objects can obtain the secrets available to the NGINX Ingress Controller. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
2- F5/NGINX Ingress Controllerv5Range: 2.x
Patches
Vulnerability mechanics
References
1- support.f5.com/csp/article/K52125139mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.