π Wiz Research reveals #IngressNightmare: Remote Code Execution vulnerabilities in Ingress NGINX for Kubernetes. Affects 43% of cloud environments, posing a critical risk. #CyberSecurity #Kubernetes
- Wiz Research identified critical Remote Code Execution vulnerabilities in the Ingress NGINX Controller, termed #IngressNightmare.
- The vulnerabilities, CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974, allow unauthorized access.
- Addressing these vulnerabilities is crucial to maintaining security in Kubernetes environments.
wiz.io: Remote Code Execution Vulnerabilities in Ingress NGINX | Wiz Blog