Dark Reading

Critical MCP Integration Flaw Puts NGINX at Risk

Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuration ...
Infosecurity-magazine.com

IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems

Kubernetes customers using the popular Ingress NGINX Controller have been urged to patch four newly discovered remote code execution (RCE) flaws assigned a CVSS score of 9.8. Dubbed “IngressNightmare” ...
Hackaday

This Week In Security: IngressNightmare, NextJS, And Leaking DNA

This week, researchers from Wiz Research released a series of vulnerabilities in the Kubernetes Ingress NGINX Controller that, when chained together, allow an unauthorized attacker to completely take ...

Patch now! Attackers take control of Nginx servers

Attackers are currently exploiting a critical security vulnerability in Nginx. Instances in Germany are also threatened.
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Ingress-Nginx Kubernetes gatekeeper platform ahead of its planned obsolescence. In a message from the Kubernetes Security Response Committee (SRC), users ...