Remote View
CVE-2025-1974: vulnerabilities that could make it easy for attackers to take over your Kubernetes cluster
CVE-2025-1974: vulnerabilities that could make it easy for attackers to take over your Kubernetes cluster
kubernetes.io Ingress-nginx CVE-2025-1974: What You Need to Know
Today, the ingress-nginx maintainers have released patches for a batch of critical vulnerabilities that could make it easy for attackers to take over your Kubernetes cluster. If you are among the over 40% of Kubernetes administrators using ingress-nginx, you should take action immediately to protect...
When combined with today’s other vulnerabilities, CVE-2025-1974 means that anything on the Pod network has a good chance of taking over your Kubernetes cluster, with no credentials or administrative access required.