wid-sec-w-2026-0650
·
Published 2026-03-09
·
View on BSI CERT-Bund ↗
Kubernetes (ingress-nginx): Vulnerability allows Code execution
CVSS 8.8
HIGH
Risk Summary
Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Kubernetes (ingress-nginx) ausnutzen, um beliebigen Programmcode auszuführen.
CVEs (1)
Affected Vendors
Open Source
Affected Products (6)
Open Source
·
Kubernetes
ingress-nginx <1.13.8
Open Source
·
Kubernetes
ingress-nginx 1.13.8
Open Source
·
Kubernetes
ingress-nginx <1.14.4
Open Source
·
Kubernetes
ingress-nginx 1.14.4
Open Source
·
Kubernetes
ingress-nginx <1.15.0
Open Source
·
Kubernetes
ingress-nginx 1.15.0
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more