AI description
CVE-2025-1097 is a security vulnerability found in the ingress-nginx controller for Kubernetes. It stems from the improper sanitization of the `auth-tls-match-cn` Ingress annotation, which can be exploited to inject malicious configurations into Nginx. This vulnerability allows for arbitrary code execution within the context of the ingress-nginx controller. Furthermore, successful exploitation can lead to the disclosure of Secrets accessible to the controller, potentially granting unauthorized access to sensitive information cluster-wide.
- Description
- A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the `auth-tls-match-cn` Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets accessible to the controller. (Note that in the default installation, the controller can access all Secrets cluster-wide.)
- Source
- jordan@liggitt.net
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- jordan@liggitt.net
- CWE-20
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
34
Five newly disclosed critical vulnerabilities in the Ingress NGINX Controller for Kubernetes—collectively dubbed IngressNightmare — pose a severe remote code execution (RCE) risk to cloud environments. These flaws (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and
@cytexsmb
25 Mar 2025
122 Impressions
1 Retweet
2 Likes
0 Bookmarks
1 Reply
2 Quotes
CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, CVE-2025-24513, CVE-2025-24514: Frequently Asked Questions About IngressNightmare https://t.co/M5466CUVpq https://t.co/kLG5oaB8HP
@pcasano
25 Mar 2025
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-1097 🔴 HIGH (8.8) 🏢 kubernetes - ingress-nginx 🏗️ 0 🔗 https://t.co/x5csZ60HYZ #CyberCron #VulnAlert #InfoSec https://t.co/kx3is1q5pr
@cybercronai
25 Mar 2025
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨Patch up your Kubernetes installs. ⚠️ Affected @kubernetesio versions: < v1.11.0 v1.11.0 - 1.11.4 v1.12.0 🦠Vulnerabilities CVE-2025-1974 CVE-2025-1097 CVE-2025-1098 CVE-2025-24514 CVE-2025-24513 https://t.co/zrLTDB2rU4
@gothburz
25 Mar 2025
139 Impressions
0 Retweets
52 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CRITICAL ALERT: #IngressNightmare - Four critical #RCE vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974) in #NGINX Ingress Controller for Kubernetes with #CVSS 9.8 score. This could affect a massive number of environments! https://t.co/aAepuv29JX ht
@CheckmarxZero
25 Mar 2025
287 Impressions
2 Retweets
4 Likes
0 Bookmarks
0 Replies
0 Quotes
Shodan query for IngressNightmare: (9.8 Critical Unauth RCE in Ingress NGINX: CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974) ssl:"nil1" port:8443 https://t.co/mtXaAEWWs5
@SimoKohonen
25 Mar 2025
382 Impressions
2 Retweets
4 Likes
1 Bookmark
0 Replies
0 Quotes
Shodan query for IngressNightmare: (9.8 Critical Unauth RCE in Ingress NGINX -- CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974) ssl:"nil1" port:8443 https://t.co/WNhg2vv1BG
@SimoKohonen
25 Mar 2025
3 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Shodan query for IngressNightmare: (9.8 Critical Unauth RCE in Ingress NGINX - CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974) ssl:"nil1" port:8443 https://t.co/oHXasXgHCJ
@SimoKohonen
25 Mar 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, CVE-2025-24513, CVE-2025-24514: Frequently Asked Questions About IngressNightmare https://t.co/n4lHTFJokd https://t.co/iNInsgle0s
@Trej0Jass
25 Mar 2025
65 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-1097: HIGH] Security alert: Vulnerability found in ingress-nginx allows for injection of code using `auth-tls-match-cn` Ingress annotation. Risk of code execution and Secret disclosure to controller.#cybersecurity,#vulnerability https://t.co/kQDvrJ2KVr https://t.co/6KYz
@CveFindCom
25 Mar 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 Múltiples vulnerabilidades recientes de autenticación RCE en NGNIX (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098 y CVE-2025-1974) han sido denominadas colectivamente como IngressNightmare. 🧉 https://t.co/sjCbocBglv
@MarquisioX
24 Mar 2025
143 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Vulnerabilidad crítica en NGINX Controller para Kubernetes permite RCE sin autenticación CVE-2025-24513 CVE-2025-24514 CVE-2025-1097 CVE-2025-1098 CVE-2025-1974 IngressNightmare https://t.co/HawNQjP6C5 https://t.co/VwLI9zvGT4
@elhackernet
24 Mar 2025
13110 Impressions
76 Retweets
240 Likes
74 Bookmarks
1 Reply
0 Quotes