mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 23:27:33 +02:00
marc
1.0 KiB
1.0 KiB
CVE-2021-25742
Description
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.
POC
Reference
No PoCs from references.
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/EGI-Federation/SVG-advisories
- https://github.com/cloud-Xolt/CVE
- https://github.com/cruise-automation/k-rail
- https://github.com/kajogo777/kubernetes-misconfigured
- https://github.com/khu-capstone-design/kubernetes-vulnerability-investigation
- https://github.com/noirfate/k8s_debug
- https://github.com/ruben-rodriguez/micro-frontends-in-k8s