📅 Weekly CVE Roundup
March 24 - March 30, 2025
🔴 Critical & High Severity Vulnerabilities
These are the most dangerous vulnerabilities disclosed this week. Prioritize patching these.
CVE-2025-1974 is a critical vulnerability in Kubernetes' ingress-nginx controller that allows unauthenticated attackers on the pod network to execute ...
Mar 25CVE-2025-1097 is a critical vulnerability in ingress-nginx where the auth-tls-match-cn annotation can be exploited to inject malicious configuration i...
Mar 25This vulnerability in ingress-nginx allows attackers to inject arbitrary nginx configuration via the 'mirror-target' and 'mirror-host' annotations, po...
Mar 25This vulnerability allows attackers to inject malicious configuration into ingress-nginx via the auth-url annotation, leading to arbitrary code execut...
Mar 25🐛 Common Vulnerability Types
📋 All CVEs This Week
CVE-2025-1974 is a critical vulnerability in Kubernetes' ingress-nginx controller that allows unauthenticated attackers ...
CVE-2025-1097 is a critical vulnerability in ingress-nginx where the auth-tls-match-cn annotation can be exploited to in...
This vulnerability in ingress-nginx allows attackers to inject arbitrary nginx configuration via the 'mirror-target' and...
This vulnerability allows attackers to inject malicious configuration into ingress-nginx via the auth-url annotation, le...
