Critical Ingress NGINX Vulnerabilities Allow Remote Code Execution
Blog post from SSOJet
Recent security vulnerabilities in the Ingress NGINX Controller for Kubernetes, known as "IngressNightmare," pose a significant threat to over 6,500 clusters, including those of major corporations, by potentially allowing unauthorized access and control without administrative access. Several vulnerabilities, identified as CVE-2025-1974, CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-24513, involve configuration injection and improper input validation, leading to risks such as arbitrary code execution, denial-of-service, and data exposure. To mitigate these risks, organizations are urged to update to patched versions of ingress-nginx, limit access to the admission controller, and temporarily disable certain features if immediate upgrades are not feasible. The situation underscores the importance of robust security measures, such as secure Single Sign-On, Multi-Factor Authentication, and Passkey solutions, to safeguard Kubernetes environments, as advised by SSOJet, which offers comprehensive security services like directory synchronization and secure authentication.
| Trend | Post Mentions | Total Month Mentions | Posts | Companies | MoM |
|---|---|---|---|---|---|
| Kubernetes | 6 | 1,484 | 191 | 81 | +77% |