Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw
Cloudy infosec outfit Wiz has discovered serious vulnerabilities in the admission controller component of Ingress-Nginx ...
The Hacker News17 小时
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
Five critical flaws in Ingress NGINX Controller expose 6,500+ clusters; update now to prevent unauthorized remote code ...
SecurityWeek7 小时
IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking
Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes.
Infosecurity Magazine12 小时
IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems
Wiz Research claimed the flaws impact 43% of all cloud environments, including many Fortune 500 companies. Because the software’s admission controllers are typically exposed to the public internet, ...
CRN1 天
‘IngressNightmare’ Vulnerabilities Are A Kubernetes Emergency: Wiz CTO
A series of critical zero-day vulnerabilities dubbed ‘IngressNightmare’ can enable full takeover of a Kubernetes cluster — ...
Critical vulnerabilities put Kubernetes environments in jeopardy
Wiz researchers warned that several CVEs in Ingress NGINX Controller for Kubernetes make nearly half of all cloud ...
Techzine Europe8 小时
An ‘IngressNightmare’ haunts Kubernetes clusters
A 'nightmare', is how Wiz describes multiple critical vulnerabilities discovered in Ingress NGINX Controller for Kubernetes. These security leaks allow ...