CVE-2020-8553 – The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the abil …

29 July 2020

Vuln ID: CVE-2020-8553

Published: 2020-07-29 15:15:13Z

Description: The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to create namespaces and to read and create ingress objects to overwrite the password file of another ingress which uses nginx.ingress.kubernetes.io/auth-type: basic and which has a hyphenated namespace or secret name.

Source: NVD.NIST.GOV

Date:

29 July 2020

Categorie(s):

NVD

Tag(s):

NVD

Securing the future of IoT: Why attack surface management is key29 April 2024
No more 12345: devices with weak passwords to be banned in UK28 April 2024
20 Best Linux Password Managers in 202428 April 2024
Reliable Web App Pattern: Now Optimizes Azure Migration with Enhanced Infrastructure and Security28 April 2024
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks28 April 2024