VYPR
Vendor

NGINX Controller

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2020-27730CriDec 11, 2020
    risk 0.64cvss 9.8epss 0.02

    In versions 3.0.0-3.9.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller Agent does not use absolute paths when calling system utilities.

  • CVE-2021-23018HigJun 1, 2021
    risk 0.48cvss 7.4epss 0.01

    Intra-cluster communication does not use TLS. The services within the NGINX Controller 3.x before 3.4.0 namespace are using cleartext protocols inside the cluster.