Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw
Cloudy infosec outfit Wiz has discovered serious vulnerabilities in the admission controller component of Ingress-Nginx ...
The Hacker News8 小时
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
Five critical flaws in Ingress NGINX Controller expose 6,500+ clusters; update now to prevent unauthorized remote code ...
Infosecurity Magazine3 小时
IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems
Wiz Research claimed the flaws impact 43% of all cloud environments, including many Fortune 500 companies. Because the software’s admission controllers are typically exposed to the public internet, ...
SecurityWeek3 小时
IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking
Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes.
Techzine Europe27 分钟
An ‘IngressNightmare’ haunts Kubernetes clusters
A 'nightmare', is how Wiz describes multiple critical vulnerabilities discovered in Ingress NGINX Controller for Kubernetes. These security leaks allow ...
CRN17 小时
‘IngressNightmare’ Vulnerabilities Are A Kubernetes Emergency: Wiz CTO
A series of critical zero-day vulnerabilities dubbed ‘IngressNightmare’ can enable full takeover of a Kubernetes cluster — ...