#VU82559 Input validation error in Ingress-NGINX Controller for Kubernetes - CVE-2022-4886

Cybersecurity Help s.r.o.

Published: 2023-10-30

Vulnerability identifier: #VU82559

Vulnerability risk: High

CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2022-4886

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Ingress-NGINX Controller for Kubernetes
Server applications / Other server solutions

Vendor: Kubernetes

Description

The vulnerability allows a remote user to compromise the affected system.

The vulnerability exists due to insufficient validation of user-supplied input. A remote user who can create or update ingress objects can use directives to bypass the sanitization of the spec.rules[].http.paths[].path field of an Ingress object (in the networking.k8s.io or extensions API group) to obtain the credentials of the ingress-nginx controller.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Ingress-NGINX Controller for Kubernetes: 1.0.0 - 1.7.1

External links
https://github.com/kubernetes/ingress-nginx/issues/10570
https://groups.google.com/g/kubernetes-security-announce/c/ge7u3qCwZLI
https://www.openwall.com/lists/oss-security/2023/10/25/5

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM InfoSphere Information Server

Multiple vulnerabilities in Ingress-NGINX Controller for Kubernetes