CVE-2021-25742

A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
Configurations

Configuration 1

cpe:2.3:a:kubernetes:ingress-nginx:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:ingress-nginx:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:trident:-:*:*:*:*:*:*:*

Information

Published : 2021-10-29 04:15

Updated : 2021-12-15 02:06


NVD link : CVE-2021-25742

Mitre link : CVE-2021-25742

Products Affected
No products.