Tag: kubernetes
-
LoftLabs unveils vNode for secure node-level isolation in shared Kubernetes environments
Tags: kubernetesFirst seen on scworld.com Jump to article: www.scworld.com/brief/loftlabs-unveils-vnode-for-secure-node-level-isolation-in-shared-kubernetes-environments
-
An Improved Detection Signature for the Kubernetes IngressNightmare Vulnerability
Wiz recently published a detailed analysis of a critical vulnerability in the NGINX Ingress admission controller”, what they’ve dubbed IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, CVE-2025-24514). The vulnerability stems from insufficient input validation during configuration file processing, allowing an attacker to inject arbitrary code into the NGINX process. Wiz’s writeup is excellent and covers the technical nuances…
-
MSSP Market Update: NGINX Flaw Could Expose Kubernetes Secrets
First seen on scworld.com Jump to article: www.scworld.com/news/mssp-market-update-nginx-flaw-could-expose-kubernetes-secrets
-
Kubernetes Ingress-nginx Remote Code Execution Vulnerability (CVE-2025-1974)
Overview Recently, NSFOCUS CERT detected that Kubernetes issued a security announcement and fixed the Kubernetes Ingress-nginx remote code execution vulnerability (CVE-2025-1974). The Ingress controller deployed in Kubernetes Pod can be accessed through the network without authentication. When the Admission webhook is open, an unauthenticated attacker can remotely inject any nginx configuration by sending a special…The…
-
PoC Exploit Released for Ingress-NGINX RCE Vulnerabilities
A recently disclosed vulnerability in Ingress-NGINX, tracked as CVE-2025-1974, has raised concerns about the security of Kubernetes environments. This vulnerability allows for Remote Code Execution (RCE) through the validating webhook server integrated into Ingress-NGINX. A Proof of Concept (PoC) exploit has been released, demonstrating how attackers could exploit this flaw. CVE-2025-1974 affects versions of Ingress-NGINX…
-
String of defects in popular Kubernetes component puts 40% of cloud environments at risk
Researchers aren’t aware of active exploitation in the wild, but they warn the risk for publicly exposed and unpatched Ingress Nginx controllers is extremely high. First seen on cyberscoop.com Jump to article: cyberscoop.com/kubernetes-nginx-controller-defects-wiz/
-
Auch in Deutschland: Tausende Kubernetes-Cluster lassen sich aus der Ferne kapern
Mehrere Sicherheitslücken ermöglichen eine Remote-Kontrollübernahme von Kubernetes-Clustern. In Deutschland sind mehr als 1.000 Systeme betroffen. First seen on golem.de Jump to article: www.golem.de/news/auch-in-deutschland-tausende-kubernetes-cluster-lassen-sich-aus-der-ferne-kapern-2503-194691.html
-
Critical RCE flaws put Kubernetes clusters at risk of takeover
Two ways to mitigate the flaws: The best fix is to upgrade the Ingress-NGINX component to one of the patched versions. Admins can determine if it’s being used inside their clusters by typing: kubectl get pods all-namespaces selector app.kubernetes.io/name=ingress-nginxIn situations where an immediate version upgrade is not possible, admins can reduce risk by deleting the…
-
Getting the Most Value Out of the OSCP: The PEN-200 Labs
Tags: access, ai, attack, compliance, container, cyber, cybersecurity, dns, docker, exploit, firewall, guide, hacking, Hardware, infrastructure, intelligence, jobs, kubernetes, microsoft, mitigation, network, open-source, oracle, penetration-testing, powershell, risk, security-incident, service, siem, skills, technology, tool, training, vmware, vulnerability, windowsHow to leverage the PEN-200 simulated black-box penetration testing scenarios for maximal self-improvement and career success. Disclaimer: All opinions expressed in this article are solely my own. I have reviewed the content to ensure compliance with OffSec’s copyright policies and agreements. I have not been sponsored or incentivized in any way to recommend or oppose any…
-
Ingress-nginx vulnerabilities can lead to Kubernetes cluster takeover
Wiz researchers have unearthed several critical vulnerabilities affecting Ingress NGINX Controller for Kubernetes (ingress-nginx) that may allow attackers to take over … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/25/ingressnightmare-ingress-nginx-vulnerabilities-kubernetes-cluster-takeover/
-
Critical vulnerabilities put Kubernetes environments in jeopardy
Wiz researchers warned that several CVEs in Ingress NGINX Controller for Kubernetes make nearly half of all cloud environments at risk of takeover. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/critical-vulnerabilities-kubernetes-jeopardy/743448/
-
IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking
Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes. The post IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/ingressnightmare-flaws-expose-many-kubernetes-clusters-to-remote-hacking/
-
Critical Unauthenticated Remote Code Execution Vulnerabilities inIngress NGINX
Summary Wiz Research has uncovered multiple critical unauthenticated remote code execution (RCE) vulnerabilities in theIngress NGINX Controller for Kubernetes, collectively known as IngressNightmare. These vulnerabilities First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2025/03/25/critical-unauthenticated-remote-code-execution-vulnerabilities-iningress-nginx/
-
IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking
Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes. The post IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/ingressnightmare-flaws-expose-many-kubernetes-clusters-to-remote-hacking/
-
CVE-2025-1974: IngressNightmare Flaws Threaten Kubernetes Clusters
Critical Flaws in Ingress NGINX Controller Enable Remote Code Execution A newly disclosed set of five severe vulnerabilities, dubbed IngressNightmare by cloud security firm Wiz, has put more than 6,500 Kubernetes clusters at risk. These critical flaws impact the Ingress… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2025-1974-ingressnightmare-flaws-threaten-kubernetes-clusters/
-
IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems
Wiz Security finds four critical RCE vulnerabilities in the Ingress NGINX Controller for Kubernetes First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ingressnightmare-critical-bugs-40/
-
Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw
How many K8s systems are sat on the internet front porch like that … Oh, thousands, apparently First seen on theregister.com Jump to article: www.theregister.com/2025/03/25/kubernetes_flaw_rce_risk/
-
CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, CVE-2025-24513, CVE-2025-24514: Frequently Asked Questions About IngressNightmare
Tags: access, advisory, attack, cve, cvss, exploit, flaw, hacker, injection, kubernetes, mitigation, network, open-source, vulnerability, zero-dayFrequently asked questions about five vulnerabilities in the Ingress NGINX Controller for Kubernetes, collectively known as IngressNightmare. Background The Tenable Security Response Team (SRT) has compiled this blog to answer Frequently Asked Questions (FAQ) regarding IngressNightmare. FAQ What is IngressNightmare? IngressNightmare is the name given to a series of vulnerabilities in the Ingress NGINX Controller…
-
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes that could result in unauthenticated remote code execution, putting over 6,500 clusters at immediate risk by exposing the component to the public internet.The vulnerabilities (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and CVE-2025-1974 ), assigned a CVSS score of First seen…
-
‘IngressNightmare’ Vulnerabilities Are A Kubernetes Emergency: Wiz CTO
A series of critical zero-day vulnerabilities dubbed ‘IngressNightmare’ can enable full takeover of a Kubernetes cluster, and are ‘probably the most severe’ security issue to affect Kubernetes environments in recent years, Wiz CTO Ami Luttwak tells CRN. First seen on crn.com Jump to article: www.crn.com/news/security/2025/ingressnightmare-vulnerabilities-are-a-kubernetes-emergency-wiz-cto
-
Kubernetes Patch: 43% of Clusters Face Remote Takeover Risk
Immediate Patching Urged to Address Flaws in Widely Used Ingress Nginx Controller. Critical vulnerabilities in Ingress Nginx Controller – a widely used component of the popular Kubernetes container management system – need immediate patching to prevent attackers from taking control of cloud-based applications, management interfaces and more, researchers warned. First seen on govinfosecurity.com Jump to…
-
Critical ‘IngressNightmare’ Vulns Imperil Kubernetes Environments
More than 40% of all Internet-facing container orchestration clusters are at risk. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/critical-ingressnightmare-vulns-kubernetes-environments
-
Aviatrix introduces Kubernetes firewall for cloud-native security
First seen on scworld.com Jump to article: www.scworld.com/brief/aviatrix-introduces-kubernetes-firewall-for-cloud-native-security
-
GitLab Vulnerabilities Allow Attackers to Bypass Security and Run Arbitrary Scripts
GitLab has urgently released security updates to address multiple high-severity vulnerabilities in its platform that could allow attackers to bypass security mechanisms, execute malicious scripts, and access sensitive data. The patches, included in versions 17.9.1, 17.8.4, and 17.7.6 for both Community Edition (CE) and Enterprise Edition (EE), mitigate critical risks affecting Kubernetes integrations, dependency management,…
-
Edera Banks $15M for Kubernetes Workload Isolation Tech
Seattle startup building technology to mitigate lateral movement and block “living off the land” techniques wins interest from investors. The post Edera Banks $15M for Kubernetes Workload Isolation Tech appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/edera-banks-15m-for-kubernetes-workload-isolation-tech/